[Sql-Server]what data type to use for password salt and hash values and what length?

Posted by Pandiya Chendur on Stack Overflow See other posts from Stack Overflow or by Pandiya Chendur
Published on 2010-05-19T05:19:34Z Indexed on 2010/05/19 5:30 UTC
Read the original article Hit count: 280

Filed under:

sql-server-2005

|

datatypes

|

password

|

salt

|

hash

I am generating salt and hash values from my passwords by using,

string salt = CreateSalt(TxtPassword.Text.Length);
string hash = CreatePasswordHash(TxtPassword.Text, salt);

private static string CreateSalt(int size)
{
    //Generate a cryptographic random number.
    RNGCryptoServiceProvider rng = new RNGCryptoServiceProvider();
    byte[] buff = new byte[size];
    rng.GetBytes(buff);

    // Return a Base64 string representation of the random number.
    return Convert.ToBase64String(buff);
}

private static string CreatePasswordHash(string pwd, string salt)
{
    string saltAndPwd = String.Concat(pwd, salt);
    string hashedPwd =
     FormsAuthentication.HashPasswordForStoringInConfigFile(
     saltAndPwd, "sha1");

    return hashedPwd;
}

What datatype you would suggest for storing these values in sql server? Any suggestion...

Salt:9GsPWpFD

Hash:E778AF0DC5F2953A00B35B35D80F6262CDBB8567

© Stack Overflow or respective owner

Related posts about sql-server-2005

[MAJ] SQL Server 2005 Express Edition - La version gratuite de SQL Server 2005

as seen on ASP-PHP.net - Search for 'ASP-PHP.net'
Modification technique pour le site de l'article. >>> More
SQLAuthority News – Feature Pack for Microsoft SQL Server 2005 SP4

as seen on SQL Authority - Search for 'SQL Authority'
If you are still using SQL Server 2005 – I suggest that you consider migrating to later version of the SQL Server 2008/2008 R2. Due to any reason, you wanted to continue using SQL Server 2005, I suggest that you take a look at the Feature Pack for Microsoft SQL Server 2005 SP4. There are many… >>> More
SQL Server 2005 - Syncing development/production databases

as seen on Stack Overflow - Search for 'Stack Overflow'
I've got a rather large SQL Server 2005 database that is under constant development. Every so often, I either get a new developer or need to deploy wide-scale schema changes to the production server. My main concern is deploying schema + data updates to developer machines from the "master" development… >>> More
Displaying the Row Number in a SELECT Query with SQL Server 2005

as seen on Internet.com - Search for 'Internet.com'
SQL Server 2005 introduced a function that is very handy when you want the result set to have row numbers assigned to each returned row. >>> More
Displaying the Row Number in a SELECT Query with SQL Server 2005

as seen on Internet.com - Search for 'Internet.com'
SQL Server 2005 introduced a function that is very handy when you want the result set to have row numbers assigned to each returned row. >>> More

Related posts about datatypes

C# datatypes vs. MySql datatypes

as seen on Stack Overflow - Search for 'Stack Overflow'
Does anyone has the list of conversion from MySQL data types to C# data types ? I'm having difficulties when tried to convert from smallint unsigned type into c# type. >>> More
Octave datatypes - float & double

as seen on Stack Overflow - Search for 'Stack Overflow'
I'm writing a framework for writing HDF files with JAVA (Using some existing framework). I need to keep compatibility with octave. That is, octave should be able to read the files my framework writes and vice versa. My question is, does Octave have two data types - float and double or it uses only… >>> More
What really happens when I use varchar(10) in the sqlite command-line shell?

as seen on Stack Overflow - Search for 'Stack Overflow'
I'm messing around with SQLite for the first time by working through some of the SQLite documentation. In particular, I'm using Command Line Shell For SQLite and the SoupToNuts SQLite Tutorial on Sourceforge. According to the SQLite datatype documentation, there are only 5 datatypes in SQLite. However… >>> More
Creating multiple relationships in rails with same datatypes

as seen on Stack Overflow - Search for 'Stack Overflow'
What I am trying to do is kind of like this: I have datatypes "user" and "article" for instance. I want to have relationships between these two, but in more than one way. So for instance, I'd like to let a user "like" or "bookmark" an article. So I need to have two relations in the database, one… >>> More
How to return variable datatypes from a method

as seen on Stack Overflow - Search for 'Stack Overflow'
I have a method whose callers require different datatypes. I could repeat the requisite conversions a dozen times by putting them in each of the callers, but it seems much more efficient to do it once in the called method. public String myMethod(String myArg) { return DoSomething(myArg); } public… >>> More