Re 6: No, hashing is not enough. Use an algorithm suited for this task, as recommended by those crypto experts, which right now is mostly scrypt and argon2. md5/sha1/sha2/etc is not enough no matter how much salt and pepper you throw on top.
PHP (which isn't exactly my favorite language) kinda got it right, providing easy-enough to use password functions in their standard library.
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Re 6: No, hashing is not enough.
Use an algorithm suited for this task, as recommended by those crypto experts, which right now is mostly scrypt and argon2.
md5/sha1/sha2/etc is not enough no matter how much salt and pepper you throw on top.
PHP (which isn't exactly my favorite language) kinda got it right, providing easy-enough to use password functions in their standard library.