Storing passwords
#8

Quote:
Originally Posted by Mauzen
View Post
Having a moderate protection for the passwords of your users is important, sure. But is it really THAT important in case of samp, to have the most complex and most secure hashing methods, slowing down the server itself and making it more complicated to use? I claim that any sha or whirlpool will be good enough. It might be breakable with brute force, but seriously, wheres the point in dehashing for weeks or months, just to get the password of some samp server account? Its not about money or private information, the worst thing one could do with that is like banning all users. The hacker kids that would try to "hack" into some admin account will just lose interest after some days, and the serious guys simply arent stupid enough to waste their time with samp account hacking. So just like the fear of deamx, I think that actually noone ever dehashed a password for samp (feel free to prove me the opposite).

Its way more important to keep the database itself safe. Once someone got access to the database, he can do quite all of the same bad stuff, without needing to crack any passwords. If noone can access the passwords, they wouldnt even have to be hashed (except for privacy of course)
I'm more concerned about the users' privacy than data loss on the SA-MP server. It is a fact that (too) many people use same passwords on many websites and services, including SA-MP. That's why it's vital to keep the passwords safe even though the data on the SA-MP server is not that important.

And of course it is important to keep the database safe, but there is always a chance that an intruder gains access to the data. There's not way to be 100% safe.
Reply


Messages In This Thread
Storing passwords - by Johnson_boy - 25.06.2013, 21:04
Re: Storing passwords - by SuperViper - 26.06.2013, 00:29
Re: Storing passwords - by steki. - 26.06.2013, 00:58
Respuesta: Storing passwords - by TheChaoz - 26.06.2013, 04:17
Re: Storing passwords - by Johnson_boy - 26.06.2013, 07:48
Re: Storing passwords - by thefatshizms - 26.06.2013, 14:51
Re: Storing passwords - by Mauzen - 26.06.2013, 15:42
Re: Storing passwords - by Johnson_boy - 26.06.2013, 16:18
Re: Storing passwords - by AndreT - 26.06.2013, 17:59
Re: Storing passwords - by playbox12 - 27.06.2013, 11:28
Re: Storing passwords - by Y_Less - 29.06.2013, 01:13
Re: Storing passwords - by thefatshizms - 29.06.2013, 01:28
Re: Storing passwords - by Johnson_boy - 30.06.2013, 08:44
Re: Storing passwords - by Vince - 30.06.2013, 14:10
Re: Storing passwords - by Y_Less - 30.06.2013, 16:07
Re: Storing passwords - by Vince - 30.06.2013, 16:59
Re: Storing passwords - by Johnson_boy - 30.06.2013, 18:38
Re: Storing passwords - by [HiC]TheKiller - 06.07.2013, 12:36
Re: Storing passwords - by [HiC]TheKiller - 08.07.2013, 12:57
Re: Storing passwords - by Bakr - 08.07.2013, 14:09
Re: Storing passwords - by Y_Less - 08.07.2013, 14:14
Re: Storing passwords - by Bakr - 08.07.2013, 14:23
Re: Storing passwords - by Y_Less - 08.07.2013, 14:27
Re: Storing passwords - by [HiC]TheKiller - 08.07.2013, 14:29
Re: Storing passwords - by Bakr - 08.07.2013, 14:38
Re: Storing passwords - by Y_Less - 08.07.2013, 14:48
Re: Storing passwords - by Bakr - 08.07.2013, 14:57
Re: Storing passwords - by Y_Less - 08.07.2013, 15:06
Re: Storing passwords - by SchurmanCQC - 08.07.2013, 15:43
Re: Storing passwords - by [HiC]TheKiller - 09.07.2013, 00:59
Re: Storing passwords - by Johnson_boy - 09.07.2013, 15:28

Forum Jump:


Users browsing this thread: 1 Guest(s)