Description
Enhance password security by adding a salt before hashing.
Expected Behavior
- Generate a unique random salt for each user password.
- Combine the salt with the password before hashing.
- Store the hash and salt in the database.
- Integrate under Account Management settings.
- Why We Need Salt
- Prevents attackers from using precomputed hash tables (rainbow tables) to guess passwords.
- Ensures that identical passwords have different hashes, making database breaches safer.
Example:
- Password: mypassword123
- Salt: a1b2c3
- Hash salt + password → store hash and salt
- On login, combine entered password + stored salt, hash, and compare
Description
Enhance password security by adding a salt before hashing.
Expected Behavior
Example: