Print Page | Close Window

md5 + salt Printed From: Web Wiz Forums Category: General Discussion Forum Name: Classic ASP Discussion Forum Description: Discussion on Active Server Pages (Classic ASP). URL: https://forums.webwiz.net/forum_posts.asp?TID=13914 Printed Date: 30 March 2026 at 3:03pm Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com Topic: md5 + salt Posted By: Gullanian Subject: md5 + salt Date Posted: 20 February 2005 at 5:41pm I'm creating a username + password system for a application I'm building.  All passwords are stored in their MD5 form. Reading about salts, do I need a seperate salt field, or can I not simply use the users md5(username & password) to store in the password field to reduce field numbers seeming as username is unique to the user? Replies: Posted By: Phat Date Posted: 21 February 2005 at 2:43am If the salt is static then i can not see a problem with it being dynamic. If it gets changed each login as WWF does then you will need to store it in the DB Posted By: Gullanian Date Posted: 21 February 2005 at 3:44am Whats the advantage of changing it on each login? Posted By: Gullanian Date Posted: 21 February 2005 at 3:19pm Nevermind, thought it out.  Is it to make it so that if someone did a dictionary attack and worked out your password then when they tryed to login it would be out of date anyway so the process would need to be started again?

Print Page | Close Window Forum Software by Web Wiz Forums® version 12.08 - https://www.webwizforums.com Copyright ©2001-2026 Web Wiz Ltd. - https://www.webwiz.net