mirror of
https://github.com/sigmasternchen/php-doc-en
synced 2025-03-15 08:28:54 +00:00
Added a "Password Hashing" faq, and notes to md5 and sha1 functions. Relates to bug #55215.
git-svn-id: https://svn.php.net/repository/phpdoc/en/trunk@313306 c90b9560-bf6c-de11-be94-00142212c4b1
This commit is contained in:
Justin Martin
parent
5957a61933
commit
5528f760d6
4 changed files with 169 additions and 0 deletions
150
faq/passwords.xml
Normal file
150
faq/passwords.xml
Normal file
|
|
@ -0,0 +1,150 @@
|
|||
<?xml version="1.0" encoding="utf-8"?>
|
||||
<!-- $Revision: 297028 $ -->
|
||||
<chapter xml:id="faq.passwords" xmlns="http://docbook.org/ns/docbook" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<title>Safe Password Hashing</title>
|
||||
<titleabbrev>Password Hashing</titleabbrev>
|
||||
|
||||
<para>
|
||||
This section explains the reasons behind using hashing functions
|
||||
to secure passwords, as well as how to do so effectively.
|
||||
</para>
|
||||
|
||||
<qandaset>
|
||||
<qandaentry xml:id="faq.passwords.hashing">
|
||||
<question>
|
||||
<para>
|
||||
Why should I hash passwords supplied by users of my application?
|
||||
</para>
|
||||
</question>
|
||||
<answer>
|
||||
<para>
|
||||
Password hashing is one of the most basic security considerations that
|
||||
must be made when designing any application that accepts passwords
|
||||
from users. Without hashing, any passwords that are stored in your
|
||||
application's database can be stolen if the database is compromised, and
|
||||
then immediately used to compromise not only your application, but also
|
||||
the accounts of your users on other services, if they do not use
|
||||
unique passwords.
|
||||
</para>
|
||||
<para>
|
||||
By applying a hashing algorithm to your user's passwords before storing
|
||||
them in your database, you make it implausible for any attacker to
|
||||
determine the original password, while still being able to compare
|
||||
the resulting hash to the original password in the future.
|
||||
</para>
|
||||
<para>
|
||||
It is important to note, however, that hashing passwords only protects
|
||||
them from being compromised in your data store, but does not necessarily
|
||||
protect them from being intercepted by malicious code injected into your
|
||||
application itself.
|
||||
</para>
|
||||
</answer>
|
||||
</qandaentry>
|
||||
<qandaentry xml:id="faq.passwords.fasthash">
|
||||
<question>
|
||||
<para>
|
||||
Why are common hashing functions such as <function>md5</function> and
|
||||
<function>sha1</function> unsuitable for passwords?
|
||||
</para>
|
||||
</question>
|
||||
<answer>
|
||||
<para>
|
||||
Hashing algorithms such as MD5, SHA1 and SHA256 are designed to be
|
||||
very fast and efficient. With modern techniques and computer equipment,
|
||||
it has become trivial to "brute force" the output of these algorithms,
|
||||
in order to determine the original input.
|
||||
</para>
|
||||
<para>
|
||||
Because of how quickly a modern computer can "reverse" these hashing
|
||||
algorithms, many security professionals strongly suggest against
|
||||
their use for password hashing.
|
||||
</para>
|
||||
</answer>
|
||||
</qandaentry>
|
||||
<qandaentry xml:id="faq.passwords.bestpractice">
|
||||
<question>
|
||||
<para>
|
||||
How should I hash my passwords, if the common hash functions are
|
||||
not suitable?
|
||||
</para>
|
||||
</question>
|
||||
<answer>
|
||||
<para>
|
||||
When hashing passwords, the two most important considerations are the
|
||||
computational expense, and the salt. The more computationally expensive
|
||||
the hashing algorithm, the longer it will take to brute force its
|
||||
output.
|
||||
</para>
|
||||
<para>
|
||||
There are two functions that are bundled with PHP that can perform
|
||||
hashing using a specified algorithm.
|
||||
</para>
|
||||
<para>
|
||||
The first hashing function is <function>crypt</function>, which natively
|
||||
supports several hashing algorithms. When using this function,
|
||||
you are guaranteed that the algorithm you select is available, as PHP
|
||||
contains native implementations of each supported algorithm, in case
|
||||
one or more are not supported by your system.
|
||||
</para>
|
||||
<para>
|
||||
The second hashing function is <function>hash</function>, which supports
|
||||
many more algorithms and variants than <function>crypt</function>, but
|
||||
does not support some algorithms that <function>crypt</function> does.
|
||||
The Hash extension is bundled with PHP, but can be disabled during
|
||||
compile-time, so it is not guaranteed to be available, while
|
||||
<function>crypt</function> is, being in the PHP core.
|
||||
</para>
|
||||
<para>
|
||||
The suggested algorithm to use when hashing passwords is Blowfish, as it
|
||||
is significantly more computationally expensive than MD5 or SHA1, while
|
||||
still being scalable.
|
||||
</para>
|
||||
</answer>
|
||||
</qandaentry>
|
||||
<qandaentry xml:id="faq.passwords.salt">
|
||||
<question>
|
||||
<para>
|
||||
What is a salt?
|
||||
</para>
|
||||
</question>
|
||||
<answer>
|
||||
<para>
|
||||
A cryptographic salt is data which is applied during the hashing process
|
||||
in order to eliminate the possibility of the output being looked up
|
||||
in a list of pre-calculated pairs of hashes and their input, known as
|
||||
a rainbow table.
|
||||
</para>
|
||||
<para>
|
||||
In more simple terms, a salt is a bit of additional data which makes
|
||||
your hashes significantly more difficult to crack. There are a number of
|
||||
services online which provide extensive lists of pre-computed hashes, as
|
||||
well as the original input for those hashes. The use of a salt makes it
|
||||
implausible or impossible to find the resulting hash in one of these
|
||||
lists.
|
||||
</para>
|
||||
</answer>
|
||||
</qandaentry>
|
||||
</qandaset>
|
||||
|
||||
</chapter>
|
||||
|
||||
<!-- Keep this comment at the end of the file
|
||||
Local variables:
|
||||
mode: sgml
|
||||
sgml-omittag:t
|
||||
sgml-shorttag:t
|
||||
sgml-minimize-attributes:nil
|
||||
sgml-always-quote-attributes:t
|
||||
sgml-indent-step:1
|
||||
sgml-indent-data:t
|
||||
indent-tabs-mode:nil
|
||||
sgml-parent-document:nil
|
||||
sgml-default-dtd-file:"~/.phpdoc/manual.ced"
|
||||
sgml-exposed-tags:nil
|
||||
sgml-local-catalogs:nil
|
||||
sgml-local-ecat-files:nil
|
||||
End:
|
||||
vim600: syn=xml fen fdm=syntax fdl=2 si
|
||||
vim: et tw=78 syn=sgml
|
||||
vi: ts=1 sw=1
|
||||
-->
|
||||
|
|
@ -113,6 +113,15 @@ from one file system to another.</para></note>'>
|
|||
</note>
|
||||
'>
|
||||
|
||||
<!ENTITY note.passwordhashing '<note xmlns="http://docbook.org/ns/docbook">
|
||||
<title>Secure password hashing</title>
|
||||
<para>
|
||||
It is not recommended to use this function to secure passwords, due to the fast nature of this hashing algorithm. See
|
||||
<link linkend="faq.passwords.fasthash">here</link> for details.
|
||||
</para>
|
||||
</note>
|
||||
'>
|
||||
|
||||
<!-- Tips -->
|
||||
|
||||
<!ENTITY tip.fopen-wrapper '<tip xmlns="http://docbook.org/ns/docbook"><simpara>A URL can be used as a
|
||||
|
|
|
|||
|
|
@ -96,6 +96,11 @@ if (md5($str) === '1f3870be274f6c49b3e31a0c6728957f') {
|
|||
</example>
|
||||
</para>
|
||||
</refsect1>
|
||||
|
||||
<refsect1 role="notes">
|
||||
&reftitle.notes;
|
||||
¬e.passwordhashing;
|
||||
</refsect1>
|
||||
|
||||
<refsect1 role="seealso">
|
||||
&reftitle.seealso;
|
||||
|
|
|
|||
|
|
@ -96,6 +96,11 @@ if (sha1($str) === 'd0be2dc421be4fcd0172e5afceea3970e2f3d940') {
|
|||
</example>
|
||||
</para>
|
||||
</refsect1>
|
||||
|
||||
<refsect1 role="notes">
|
||||
&reftitle.notes;
|
||||
¬e.passwordhashing;
|
||||
</refsect1>
|
||||
|
||||
<refsect1 role="seealso">
|
||||
&reftitle.seealso;
|
||||
|
|
|
|||
Loading…
Reference in a new issue