Adding Salt to Hashing: A Better Way to Store Passwords

  Рет қаралды 23,598

OktaDev

OktaDev

Күн бұрын

Пікірлер: 47
@cryptoninjapay
@cryptoninjapay Жыл бұрын
Love how you broke this down into easy to understand terms. Great explanation!
@WillJohnsonio
@WillJohnsonio Жыл бұрын
Thank you!
@ash_tray_6
@ash_tray_6 9 ай бұрын
Man, this video is awesome hahaha your shadowboxing had me laughing out loud. Also holy crap your production quality and visuals are top tier. I can't imagine how long this took. Definitely the most clear and easy to understand video I've seen on hashing, you explained all the concepts in a human way, and not like a robot way lol. Instant sub! Great job
@OktaDev
@OktaDev 9 ай бұрын
Thanks for watching and subscribing! Glad to hear this video was helpful for you. If there are other subjects you'd like to see covered let us know!
@SmallvilleJW
@SmallvilleJW Жыл бұрын
This was an awesome explanation. Thank you for making things easy to understand! Great job 😎
@WillJohnsonio
@WillJohnsonio Жыл бұрын
Thanks!
@kacy6014
@kacy6014 Жыл бұрын
Best explanation ever. Only thing I would add is that you can append the salt to the hash, then store that in the db. That way you don't need a separate salt column in the db.
@WillJohnsonio
@WillJohnsonio Жыл бұрын
Great point!
@heyt54
@heyt54 Жыл бұрын
Either way, if the attacker gets the DB he also has the salt for each user. What the point then to use a salt, unless you keep it _separate_?
@r3jk8
@r3jk8 Жыл бұрын
excellent video! every programmer should be required to watch this video!
@OktaDev
@OktaDev Жыл бұрын
Thanks for the feedback! We're happy to hear you found it helpful.
@theisegeberg
@theisegeberg 2 жыл бұрын
Nice to get some things that I was "sort of sure that's how it is" hammered in. Great video, and great pacing.
@OktaDev
@OktaDev Жыл бұрын
Thanks for your feedback! We'll be creating lots of more content like this to cover more identity and security concepts :) Please subscribe to our channel if you'd like to see more.
@WillJohnsonio
@WillJohnsonio Жыл бұрын
Thank you!
@ezcreations777
@ezcreations777 12 күн бұрын
this was great! Thanks so much for being a good teacher Will
@Mister2023-e7f
@Mister2023-e7f Жыл бұрын
good work, just wanted to watch part of the video and watched until the end
@dominuskelvin
@dominuskelvin 2 жыл бұрын
Awesome tutorial Will
@OktaDev
@OktaDev Жыл бұрын
Thanks for watching!
@WillJohnsonio
@WillJohnsonio Жыл бұрын
Thank Kelvin!
@panteliskaramolegkos2693
@panteliskaramolegkos2693 8 ай бұрын
...and this is how educational content should be made
@stringpicker81
@stringpicker81 Жыл бұрын
Informative and actually quite entertaining to watch!
@mihirsawant8817
@mihirsawant8817 2 жыл бұрын
Spring Security in Java Ecosystem right, its not for js I think
@user-cc8kb
@user-cc8kb 5 ай бұрын
Great explanation! Thanks
@MuddazC
@MuddazC Жыл бұрын
Informative and educational 😊
@iBasskung
@iBasskung 9 ай бұрын
Nice info! Thanks so much.
@OktaDev
@OktaDev 9 ай бұрын
Thanks for watching!
@NikhilChandel-xy2sw
@NikhilChandel-xy2sw Жыл бұрын
can Auth0 provide user level resource access control overriding existing roles/permission hierarchies..just because we don't want to create too many roles&permissions
@devin7161
@devin7161 Жыл бұрын
Great Video
@OktaDev
@OktaDev Жыл бұрын
Thanks!
@sabuein
@sabuein Жыл бұрын
Thank you.
@OktaDev
@OktaDev Жыл бұрын
You are welcome. Thanks for watching!
@pifele
@pifele 2 жыл бұрын
Very nice video, thnx!
@OktaDev
@OktaDev Жыл бұрын
Glad that you enjoyed it! Thanks for watching!
@christianwunder7396
@christianwunder7396 Жыл бұрын
Thank you for this!
@JasDosanjh-mj9co
@JasDosanjh-mj9co 5 ай бұрын
you said the salt is stored in plaintext?
@lessermook7608
@lessermook7608 Жыл бұрын
nice work
@OktaDev
@OktaDev Жыл бұрын
Thanks!
@clcl18cl18
@clcl18cl18 2 жыл бұрын
Well done video and cool looking guy🙂
@OktaDev
@OktaDev Жыл бұрын
😎 Thanks!
@ricardotrejoruiz5776
@ricardotrejoruiz5776 Жыл бұрын
I don't understand how a salted password with random salt can match the saved hash on database.
@WillJohnsonio
@WillJohnsonio Жыл бұрын
Great question! The salt should be stored with the hashed password When the checking the entered password the salt is grabbed and added to the entered password The stored salt is added to the entered password then hashed and compared to the hashed password in the database. Does that help?
@ricardotrejoruiz5776
@ricardotrejoruiz5776 Жыл бұрын
@@WillJohnsonio oook, kind regards :)
@renmin114
@renmin114 Жыл бұрын
Happy me the 100th up😂
@OktaDev
@OktaDev Жыл бұрын
haha! Team work makes the dream work!
@minjon56
@minjon56 10 ай бұрын
🔥👏 Thanks for sharing 💙
Password Storage Tier List: encryption, hashing, salting, bcrypt, and beyond
10:16
How to treat Acne💉
00:31
ISSEI / いっせい
Рет қаралды 108 МЛН
The evil clown plays a prank on the angel
00:39
超人夫妇
Рет қаралды 53 МЛН
Hashing vs Encryption Differences
19:38
Programming w/ Professor Sluiter
Рет қаралды 175 М.
What are Refresh Tokens?! and...How to Use Them Securely
19:29
7 Cybersecurity Tips NOBODY Tells You (but are EASY to do)
13:49
All Things Secured
Рет қаралды 995 М.
Hashing Passwords in Node and Express using bcrypt
17:38
Sam Meech-Ward
Рет қаралды 33 М.
Passkeys: Goodbye Passwords, Hello Security! (SpringOne)
44:15
SpringDeveloper
Рет қаралды 9 М.
Password Hashing, Salts, Peppers | Explained!
4:30
Seytonic
Рет қаралды 244 М.
FIDO Promises a Life Without Passwords
9:58
IBM Technology
Рет қаралды 414 М.
A Developer's Guide to SAML
27:47
OktaDev
Рет қаралды 191 М.
Salting, peppering, and hashing passwords
8:56
mCoding
Рет қаралды 69 М.