|
|
|
|
|
|
by zenhack
2969 days ago
|
|
|
In particular, the point is to make it so that the thing you store can't actually be used to authenticate -- only to verify. So if you're doing it right, the client can't just send the hash, because that wouldn't actually authenticate them. |
|
|