From the course: Ethical Hacking: System Hacking
Join today to access over 25,200 courses taught by industry experts.
Defending against password attacks
From the course: Ethical Hacking: System Hacking
Defending against password attacks
- [Instructor] Protecting users and systems from password attacks is crucial for maintaining organizational security and privacy. In this segment, we'll explore key techniques to prevent password attacks, including salting, password policies, educating users, and hardening systems. First, let's talk about salting the password, which adds a random string to the hash to protect against a rainbow attack. The salt is stored in the database along with the hash or as part of the hash string. So let's talk about how this works. A rainbow table attack works because every unsalted hash password will return the same hash. So we have two users, Rae and Matt. They both use the same password, Marley. As you can see from the resultant hash, the two are exactly the same. However, if we add salt with a random string to the hash, we can see that both hashes are now different. The same password, but they have a different hash value. We also want to implement strong password policies. At the…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.