Talk:Cryptography

Once this is done
I support merging encryption into this. 18:11, 18 December 2015 (UTC)
 * Planned on it. Arcane (talk) 18:14, 18 December 2015 (UTC)

Re:recent revert
I thought parts were good. RBP, which parts should stay? How about a Fun article for some of the non-missional content? 23:26, 2 January 2017 (UTC)

Bad security advice
The only way to retrieve the plain-text of a hashed password is bruteforcing or finding potential collisions. Even if the password database was compromised, every password it contains would need to be bruteforced individually. The process of salting the hashing algorithm adds an extra layer of complexity to the bruteforcing process.

This section underestimates the importance of salting. When salts aren't used, or aren't used properly, the database is open to attacks such as lookup tables and reverse lookup tables (the latter is perhaps the worst, since it allows the attacker to find any users with the same password; they might not even need to crack any passwords in the first place, but simply look for people whose passwords match the hash of "password" or some other presumably common password.) Brute force is only necessary when salts are generated and used the right way.

— 21:45, 15 January 2017 (UTC)
 * Salting is very important indeed. Could you perhaps do a rewrite and insert a source or two in tags? Thanks! Reverend Black Percy (talk) 22:41, 15 January 2017 (UTC)