Is there a secure password hashing library (e.g. phpass) or hashing method that I can easily use in both PHP and Java?
可以将文章内容翻译成中文,广告屏蔽插件可能会导致该功能失效(如失效,请关闭广告屏蔽插件后再试):
问题:
回答1:
If you want do the easy thing, you can use sha-N with salt. (N being 1, 256 or 512)
Jeff Atwood did a nice blog post on that recently, saying that bcrypt and PBKDF2 are the best options.
In PHP you can use bcrypt (and in Java too)
Related topics:
- How do you use bcrypt for hashing passwords in PHP?
Resouces:
- Coding Horror - Speed Hashing
- Security Stack exchange - Do any security experts recommend bcrypt for password storage?
回答2:
Any standard library such as SHA*, MD* will do. SHA>2 is recommended (e.g. SHA512).
回答3:
md5 and SHA with salt are the most widely used ones.
![Prime Path[POJ3126] [SPFA/BFS]](https://oscimg.oschina.net/oscnet/e1200f32e838bf1d387d671dc8e6894c37d.jpg "Prime Path[POJ3126] [SPFA/BFS]")
