Combine CRC32(), MD5() && SHA256 to make a Salt Combination is too much ?

Question

The problem maybe that it would overcharge the server Memory while Creating Hashes and maybe twice while loading it.

So did you think is better to make a function that specializes in this or just use the default SHA256 instead?

Related: http://stackoverflow.com/questions/348109/is-double-hashing-a-password-less-secure-than-just-hashing-it-once — Dave Chen, Sep 11 '13 at 02:25

George Brighton · Accepted Answer · 2013-09-11T02:32:46.533

0

I assume the context here is hashing passwords. Why reimplement what already exists? If you have PHP 5.5, you can take advantage of the new password hashing library, which drastically simplifies the whole process.

If you're running an older version of PHP, I'd use a tried and tested framework, such as phpass.

edited Sep 11 '13 at 02:32

answered Sep 11 '13 at 02:27

George Brighton

5,131
9
27
36

There's a answer that let me thinking so much so i wont try to re-invent the wheel! and i would choose one of the default ones even if it means to update it every month or once 2 weeks. – Yamel Mauge Sep 11 '13 at 02:41

Combine CRC32(), MD5() && SHA256 to make a Salt Combination is too much ?

1 Answers1