ansaurus

Question

Best way to handle user account authentication and passwords

Answer 1

A:

You could store the salt for the hashed password in another table, of course each user would have their own salt. You could then limit access to that table.

mattruma 2008-09-13 18:38:05

Answer 2

+2 A:

A very bad idea indeed. If the database is compromised, all accounts are compromised.
Good way to go. If your hash algorithm includes the username, replacing the password hash with another one will not work.

Unix stores hashes in a a text file /etc/shadow, which is accessible only to privileged users. Passwords are encrypted with a salt.

Christian Lescuyer 2008-09-13 18:41:54

Someone with access to the DB though could still have access to the account. They would just need to rename the username temporarily.

Brian R. Bondy 2008-09-13 18:43:19

So could you swap 2 user's passwords by moving the password hashes in that file?

Brian R. Bondy 2008-09-14 08:58:37

Brian, not if the hash algorithm includes the username.

Christian Lescuyer 2008-12-04 13:29:00

Answer 3

+5 A:

This is a better method, but the account can be accessed by replacing the password hash in the database with the hash of another account that you know the auth info for.

There's really no way around this. Anyone who as write access to the password file has complete control of the computer.

Chris Upchurch 2008-09-13 18:51:29

Answer 4

+3 A:

You could use openID and save no confidential user passwords at all. Who said it is for websites only?

arturh 2008-09-13 19:29:54

Answer 5

+3 A:

I'd go with 2 but use some salt. Some pseudocode:

SetPassword(user, password)
    salt = RandomString()
    hash = Hashfunction(salt+password)
    StoreInDatabase(user, salt, hash)

CheckPassword(user, password)
    (salt, hash) = GetFromDatabase(user)
    if Hashfunction(salt+password) == hash
        return "Success"
    else
        return "Login Failed"

It is important to use a well known hash function (such as MD5 or SHA-1), implemented in a library. Don't roll your own or try implementing it from a book its just not worth the risk of getting it wrong.

@Brian R. Bondy: The reason you use salt is to make dictionary attaks harder, the attacker can't hash a dictionary and try against all the passwords, instead she have to take the salt + the dictionary and hash it, which makes the storage requierments expode. If you have a dictionary of the 1000 most commaon passwords and hash them you need something like 16 kB but if you add two random letters you get 62*62*16 kB ≈ 62 Mb.

Else you could use some kind of One-time passwords I have heard good things about OTPW but havent used it.

Mr Shark 2008-09-13 20:51:06

Is there any benefit to using the salt as well if it is also stored in the DB?

Brian R. Bondy 2008-09-13 21:02:58

Agreed, but I would suggest not using MD5 if SHA-1 is available. MD-5's vulnerabilities are well documented--SHA-1 is 'better'.

Stu Thompson 2008-09-14 09:27:38

+1 for shouting about not writing your own crypto algorithms :-)

Graham Lee 2009-07-24 11:03:23

Answer 6

A:

The usual approach is to use option two with email:

Store user name, password hash and email address into the database.

Users can either input their password or reset it, in the latter case a random password is generated, a new hash is created for the user and the password is sent to him via email.

Edit: If the database is compromised then you can only guarantee no sensible information can be accessed, you can no longer ensure the security of your application.

Jorge Córdoba 2008-09-13 22:02:06

Answer 7

A:

Hash the username and the password together. That way, if two users have the same password, the hashes will still be different.

Graeme Perrow 2008-09-13 22:27:28

Answer 8

+3 A:

Jeff Atwood has some good posts concerning hashing, if you decide to go that route:

Jarrod Dixon 2008-09-14 08:37:14

Answer 9

+4 A:

This was a common issue in UNIX many years ago, and was resolved by separating the user identity components (username, UID, shell, full name, etc.) from the authentication components (password hash, password hash salt). The identity components can be globally readable (and in fact must be, if UIDs are to be mapped to usernames), but the authentication components must be kept inaccessible to users. To authenticate a user, have a trusted system which will accept a username and password, and will return a simple result of "authenticated" or "not authenticated". This system should be the only application with access to the authentication database, and should wait for a random amount of time (perhaps between 0.1 and 3 seconds) before replying to help avoid timing attacks.

stormlash 2008-09-16 17:06:52

Answer 10

A:

This is a bit of a non problem for a lot of applications because gaining access to the database is probably the most common goal of any attacker. So if they already have access to the database why would they still want to login to the application ? :)

Mihai Secasiu 2009-07-24 10:54:46

True for a lot of applications. Not mine. Sometimes the database makes references to files on disk. Having access to the database doesn't give you access to the files on disk.

Brian R. Bondy 2009-07-24 11:22:29

Answer 11

A:

If the 'system' is a public website RPX can provide you with a login/user account services for the most common providers, like OpenId, Facebook, Google, etc.

Now, given the way you formulate your question I guess the 'system' you're talking about is more likely an internal windows/linux based enterprise app. Nevertheless; for those googling around for login/user account providers (like I did before a came across RPX), this could be a good fit :)

Kjetil Klaussen 2010-05-08 19:58:32

ansaurus

tags:

views:

answers:

Best way to handle user account authentication and passwords

related questions