B boorman New Member Jun 10, 2012 #1 How much stronger would\[code\]return sha1($salt.sha1($passwd));\[/code\]be compared to just:\[code\]return sha1($salt.$passwd);\[/code\]\[code\]$salt\[/code\] is a per-user string of length 12 consisting of strong random ASCII.
How much stronger would\[code\]return sha1($salt.sha1($passwd));\[/code\]be compared to just:\[code\]return sha1($salt.$passwd);\[/code\]\[code\]$salt\[/code\] is a per-user string of length 12 consisting of strong random ASCII.
