Y
Hacker News
new
|
ask
|
show
|
jobs
by
jameshart
2934 days ago
How does the server verify that the salt it receives in the second request is the same salt it generated in the first response? Does the server have to retain state?
Also you should maybe read
https://benlog.com/2008/06/19/dont-hash-secrets/
1 comments
bullen
2934 days ago
Servers are stateful.
link