[GiamPy.]

Quote:

Originally Posted by Whitetiger It is useless to hash a password more than once. You already have support for a salt which is plenty secure.

I think you're a little bit misinformed regarding hashing and salts or password security whatsover.

Hashing a password once is not safe AT ALL for brute-force attacks.
Depending on the computer performances, it may take up to few minutes in order to find your plain text password.

Salting is just a little extra that slightly increases the password security, because it's unlikely the dictionary used for the brute-force attack will have the salt.

However, hashing an hash multiple times (if not hundreds or thousands, like in my example) will turn the brute-force attack into something extremely slow because the computer will need to find every correct combination for every single hash generated, which will take a lot depending on the amount of iterations used on the function.

The question is: what's the good combination of security and speed? Usually, a slow function means a safer password, but in SA-MP, as ****** explained here you need to find an acceptable amount of iterations in order to not make the gameplay experience annoying.