HASHBYTES

SQLServerCentral is supported by Red Gate Software Ltd.

Popular Topics

Home

Members

Calendar

Who's On

Home » Article Discussions » Article Discussions by Author » Discuss Content Posted by Steve Jones » HASHBYTES

59 posts, Page 2 of 6

««1 2 3 4 5 »»»

HASHBYTES

Rate Topic

Display Mode

Topic Options

Author

Message

Raghavendra Mudugal

Posted Thursday, February 09, 2012 3:45 AM

SSC-Addicted

Group: General Forum Members
Last Login: Yesterday @ 4:14 AM
Points: 447, Visits: 1,199

0xB9A02E529093456D139C69FC5E5D4D825B7EC24B 0xCDE457DD8AB6C020E9852FE5B6953E02631A2CB2

this is the output of your query, just wanted to know what you mean by "exact same results"....?

ww; Raghu
--
There are only 10 types of people in the world, those who understand binary, and those who don't.

Note: (as of now) only.. 1 and 4 applies (i am on my way...)

Post #1249592

KrishnaChaithanya

Posted Thursday, February 09, 2012 3:51 AM

Valued Member

Group: General Forum Members
Last Login: Friday, November 23, 2012 5:08 AM
Points: 51, Visits: 43

hearing for the first time about hashbytes.. good platform to learn new things... Cool

Post #1249593

ma-516002

Posted Thursday, February 09, 2012 4:06 AM

SSCommitted

Group: General Forum Members
Last Login: Monday, May 06, 2013 3:27 AM
Points: 1,864, Visits: 297

Find some thoughts about this topic here:
http://social.msdn.microsoft.com/Forums/en-US/sqlsecurity/thread/6002f5a4-19a0-4a11-a569-e112375d3efa/

Post #1249598

michael.kaufmann

Posted Thursday, February 09, 2012 4:09 AM

Ten Centuries

Group: General Forum Members
Last Login: Wednesday, February 06, 2013 11:51 PM
Points: 1,263, Visits: 1,079

Raghavendra Mudugal (2/9/2012)

0xB9A02E529093456D139C69FC5E5D4D825B7EC24B 0xCDE457DD8AB6C020E9852FE5B6953E02631A2CB2

this is the output of your query, just wanted to know what you mean by "exact same results"....?

The result is exactly the same as when running Steve's code (see the solution to the QotD in this thread).
-Michael

Post #1249601

michael.kaufmann

Posted Thursday, February 09, 2012 4:14 AM

Ten Centuries

Group: General Forum Members
Last Login: Wednesday, February 06, 2013 11:51 PM
Points: 1,263, Visits: 1,079

From a coding perspective (having a random salt parameter), this URL to a post on stackoverflow.com has a nice twist to the matter.

Cheers,
Michael

Post #1249602

rfr.ferrari

Posted Thursday, February 09, 2012 5:02 AM

Ten Centuries

Group: General Forum Members
Last Login: Thursday, May 02, 2013 10:51 AM
Points: 1,219, Visits: 13,507

very good question with a complex understanding (when is necessary translate for another language)! BigGrin

today, I learned anything!!!

rfr.ferrari
DBA - SQL Server 2008
MCITP | MCTS

remember is live or suffer twice!

Post #1249615

Thomas Abraham

Posted Thursday, February 09, 2012 5:31 AM

Ten Centuries

Group: General Forum Members
Last Login: Yesterday @ 4:58 AM
Points: 1,152, Visits: 1,457

Thanks for the question. Hoever, I got it wrong because I used this source:

http://msdn.microsoft.com/en-us/library/cc837966(SQL.100).aspx

which says:

"It is not possible to specify the salt value in SQL Server."

Can someone please expain why this is wrong? Or why I have interpreted it incorrectly. Thanks!

Please don't go. The drones need you. They look up to you.

Post #1249628

Rich Weissler

Posted Thursday, February 09, 2012 5:33 AM

SSCommitted

Group: General Forum Members
Last Login: Today @ 11:38 AM
Points: 1,567, Visits: 771

GPO (2/8/2012)

The SALE string? This confused me! Tongue

Yeah, I decided SALE had to be a typo for SALT. (If that isn't want happened, someone please yell... I'm still assuming.)

Post #1249630

L' Eomot Inversé

Posted Thursday, February 09, 2012 5:39 AM

SSCertifiable

Group: General Forum Members
Last Login: Today @ 11:54 AM
Points: 7,112, Visits: 7,188

ma-516002 (2/9/2012)

Find some thoughts about this topic here:
http://social.msdn.microsoft.com/Forums/en-US/sqlsecurity/thread/6002f5a4-19a0-4a11-a569-e112375d3efa/

I hope no-one who reads that thread gets confused and is infected by this crazy notion that Hashbytes does internal salting! As Russel Fields points out: "HASHBYTES does not, in itself, use a salt key" - but despite that clear (and accurate) statement the OP (Dboy888) remained unconvinced.

Anyone who wants to can use the MDn or SHA1 servers available on the web to caculate some hashes, and then calculate the same hashes using hashbytes: they will find that hashbytes produces the same standard results as the things on the web - so clearly there is no salting going on in there.

Tom
Is minic a gheibheann béal oscailte dorn dúnta.
Is minig a cheapas beul fosgailte dòrn dùinte.

Post #1249633

Michael Lysons

Posted Thursday, February 09, 2012 5:51 AM

Ten Centuries

Group: General Forum Members
Last Login: Friday, May 17, 2013 1:59 AM
Points: 1,126, Visits: 924

Blimey - a question I could answer correctly without needing to do some reading first!

Post #1249640

« Prev Topic | Next Topic »

59 posts, Page 2 of 6

««1 2 3 4 5 »»»

Permissions