|
|
|
|
|
|
by hsiung
6584 days ago
|
|
|
You store the password hashed with a salt in the database (just keep track of the salt you used). The server can send the salt to the client, in addition to the random number. So the client is performing two hashes: md5(md5(password+salt)+random_token). |
|
|