Hacker News new | ask | show | jobs
by StavrosK 5477 days ago
> Salted hashes are a straight-up vulnerability.

I find this a bit of a misnomer. I understand what you mean in context, of course, but, strictly speaking, bcrypt is a "hash", and "salted" is always good.
1 comments
tptacek 5477 days ago
What was your goal with this comment?
link
StavrosK 5477 days ago
Clarification. Right now we have

> Salted hashes are a straight-up vulnerability. -- tptacek

link
JoachimSchipper 5477 days ago
"Salted or unsalted versions of common hash functions (MD5, SHA-1, SHA-2, SHA-3) are not to be used to store passwords."
link