Sotwe logo Sotwe logo
Toussinours's profile banner image
Toussinours's profile image

๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก

@Toussinours

๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป tech lead developer ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป Never stop learning #webdev #LaravelEnthusiast currently @flatchr ex @wiztopic
Paris, France
Joined June 2009
445 Following
101 Followers
1.2K Posts
ย Pinned Tweet
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
Find a job: https://t.co/lv77QDnQiV Cashback: https://t.co/8exLVuH34X
0
0
0
0
0
Toussinours ย retweeted
alexxubyte's profile image
Alex Xu Verified account @alexxubyte
How to store passwords safely in the database and how to validate a password? Letโ€™s take a look. ๐“๐ก๐ข๐ง๐ ๐ฌ ๐๐Ž๐“ ๐ญ๐จ ๐๐จ ๐Ÿ”น Storing passwords in plain text is not a good idea because anyone with internal access can see them. ๐Ÿ”น Storing password hashes directly is not sufficient because it is pruned to precomputation attacks, such as rainbow tables. ๐Ÿ”น To mitigate precomputation attacks, we salt the passwords. ๐–๐ก๐š๐ญ ๐ข๐ฌ ๐ฌ๐š๐ฅ๐ญ? According to OWASP guidelines, โ€œa salt is a unique, randomly generated string that is added to each password as part of the hashing processโ€. ๐‡๐จ๐ฐ ๐ญ๐จ ๐ฌ๐ญ๐จ๐ซ๐ž ๏ฟฝ๏ฟฝ๏ฟฝ๏ฟฝ ๐ฉ๐š๐ฌ๐ฌ๐ฐ๐จ๐ซ๐ ๐š๐ง๐ ๐ฌ๐š๐ฅ๐ญ? 1๏ธโƒฃ A salt is not meant to be secret and it can be stored in plain text in the database. It is used to ensure the hash result is unique to each password. 2๏ธโƒฃ The password can be stored in the database using the following format: ๐˜ฉ๐˜ข๐˜ด๐˜ฉ( ๐˜ฑ๐˜ข๐˜ด๐˜ด๐˜ธ๐˜ฐ๐˜ณ๐˜ฅ + ๐˜ด๐˜ข๐˜ญ๐˜ต). ๐‡๐จ๐ฐ ๐ญ๐จ ๐ฏ๐š๐ฅ๐ข๐๐š๐ญ๐ž ๐š ๐ฉ๐š๐ฌ๐ฌ๐ฐ๐จ๐ซ๐? To validate a password, it can go through the following process: 1๏ธโƒฃ A client enters the password. 2๏ธโƒฃ The system fetches the corresponding salt from the database. 3๏ธโƒฃ The system appends the salt to the password and hashes it. Letโ€™s call the hashed value H1. 4๏ธโƒฃ The system compares H1 and H2, where H2 is the hash stored in the database. If they are the same, the password is valid. Over to you: what other mechanisms can we use to ensure password safety? โ€“ Subscribe to our weekly newsletter to get a Free System Design PDF (158 pages): https://t.co/uc5M7CdXXC
alexxubyte's tweet photo. How to store passwords safely in the database and how to validate a password? Letโ€™s take a look. ๐“๐ก๐ข๐ง๐ ๐ฌ ๐๐Ž๐“ ๐ญ๐จ ๐๐จ ๐Ÿ”น Storing passwords in plain text is not a good idea because anyone with internal access can see them. ๐Ÿ”น Storing password hashes directly is not sufficient because it is pruned to precomputation attacks, such as rainbow tables. ๐Ÿ”น To mitigate precomputation attacks, we salt the passwords. ๐–๐ก๐š๐ญ ๐ข๐ฌ ๐ฌ๐š๐ฅ๐ญ? According to OWASP guidelines, โ€œa salt is a unique, randomly generated string that is added to each password as part of the hashing processโ€. ๐‡๐จ๐ฐ ๐ญ๐จ ๐ฌ๐ญ๐จ๐ซ๐ž ๏ฟฝ๏ฟฝ๏ฟฝ๏ฟฝ ๐ฉ๐š๐ฌ๐ฌ๐ฐ๐จ๐ซ๐ ๐š๐ง๐ ๐ฌ๐š๐ฅ๐ญ? 1๏ธโƒฃ A salt is not meant to be secret and it can be stored in plain text in the database. It is used to ensure the hash result is unique to each password. 2๏ธโƒฃ The password can be stored in the database using the following format: ๐˜ฉ๐˜ข๐˜ด๐˜ฉ( ๐˜ฑ๐˜ข๐˜ด๐˜ด๐˜ธ๐˜ฐ๐˜ณ๐˜ฅ + ๐˜ด๐˜ข๐˜ญ๐˜ต). ๐‡๐จ๐ฐ ๐ญ๐จ ๐ฏ๐š๐ฅ๐ข๐๐š๐ญ๐ž ๐š ๐ฉ๐š๐ฌ๐ฌ๐ฐ๐จ๐ซ๐? To validate a password, it can go through the following process: 1๏ธโƒฃ A client enters the password. 2๏ธโƒฃ The system fetches the corresponding salt from the database. 3๏ธโƒฃ The system appends the salt to the password and hashes it. Letโ€™s call the hashed value H1. 4๏ธโƒฃ The system compares H1 and H2, where H2 is the hash stored in the database. If they are the same, the password is valid. Over to you: what other mechanisms can we use to ensure password safety? โ€“ Subscribe to our weekly newsletter to get a Free System Design PDF (158 pages): https://t.co/uc5M7CdXXC
17
996
209
817
73K
Toussinours ย retweeted
hackinarticles's profile image
Hacking Articles Verified account @hackinarticles
Linux Grep Cheat Sheet #infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #security #linux #cybersecurityawareness #bugbounty #bugbountytips
hackinarticles's tweet photo. Linux Grep Cheat Sheet #infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #security #linux #cybersecurityawareness #bugbounty #bugbountytips https://t.co/AIczvCkuJ8
6
586
134
538
81K
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
Vous souvenezโ€‘vous quand vous avez rejoint Xย ? Moi, ouiย ! #MonAnniversaireX
Toussinours's tweet photo. Vous souvenezโ€‘vous quand vous avez rejoint Xย ? Moi, ouiย ! #MonAnniversaireX https://t.co/DG9symv28p
0
1
0
0
18

Who to follow

MennelDev's profile image
Mennel ๐Ÿ›๏ธ Verified account
@MennelDev
Je crรฉe des App Mobiles vite et bien | Indie Hacker โšก๏ธ
YouaabedR's profile image
YR
@YouaabedR
0xMarlova's profile image
Patrik Svoboda | satoshie.base.eth
@0xMarlova
Vagabond Dev from ๐Ÿ‡ฎ๐Ÿ‡ช - Built @daomaker in โ€˜21. By day BE dev at a CEX, by nite buidling @satoshie_app. $TUSHY maxi
Toussinours ย retweeted
tobias_petry's profile image
Tobias_Petry.sql Verified account @tobias_petry
Your SQL query is slow and you need to create an index. But which one? An index on a single column is wrong 99% of the time... ๐Ÿ‘‡ Learn with 5 tweets why you always need a multi-column index
tobias_petry's tweet photo. Your SQL query is slow and you need to create an index. But which one? An index on a single column is wrong 99% of the time... ๐Ÿ‘‡ Learn with 5 tweets why you always need a multi-column index
21
558
60
746
446K
Toussinours ย retweeted
wesbos's profile image
Wes Bos Verified account @wesbos
๐Ÿ”ฅ Here are 4 more ways you can use JavaScript's new Promise.withResolvers() method. Use it today. It's in every browser and can be polyfilled in 9 lines.
6
623
91
364
65K
Toussinours ย retweeted
addyosmani's profile image
Addy Osmani Verified account @addyosmani
Tip: @ChromeDevTools can now override the content of Fetch/XHR requests! Great for mocking APIs without waiting on backend changes! This and lots more in Chrome 117: https://t.co/kP0JrGfHlz
53
3K
657
732
306K
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
Vous souvenez-vous quand vous avez rejoint Twitterย ? Moi, ouiย ! #MonAnniversaireTwitter
Toussinours's tweet photo. Vous souvenez-vous quand vous avez rejoint Twitterย ? Moi, ouiย ! #MonAnniversaireTwitter https://t.co/l6HODwlPTX
0
1
1
0
72
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
@melvynx @SaveToNotion #thread
0
0
0
0
175
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
Very interesting article about #useMemo and #useCallback ! Take a look at "How to useMemo and useCallback: you can remove most of them" by @adevnadia https://t.co/BLRpyyoXG4 #react #webdeveloper
0
3
1
0
345
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
@AiExplorerFR @SaveToNotion #thread
1
0
0
0
168
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
https://t.co/LeJSPAkhnf
0
1
0
0
19
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
@melvynx @SaveToNotion #thread
1
0
0
0
494
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
@infomoneypro @SaveToNotion #thread
1
0
0
0
99
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
https://t.co/DprxicnMVB #cashback #money #parrainage #inflation
0
1
0
0
0
Toussinours ย retweeted
FrontendHorse's profile image
๐Ÿด Frontend Horse @FrontendHorse
My favorite JavaScript frameworkโ€ฆ
36
1K
219
86
0
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
Vous souvenez-vous quand vous avez rejoint Twitterย ? Moi, ouiย ! #MonAnniversaireTwitter
Toussinours's tweet photo. Vous souvenez-vous quand vous avez rejoint Twitterย ? Moi, ouiย ! #MonAnniversaireTwitter https://t.co/fwK0kSu6tL
0
1
0
0
0
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
I โค๏ธ git #awesomeTool #gitIsAwesome #thanks
0
1
0
0
0
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
Dear @getpostman, you save my day. With love. From Paris.
0
5
0
0
0
Toussinours ย retweeted
Snowden's profile image
Edward Snowden Verified account @Snowden
Every iPhone will search itself for whatever Apple wants, or for whatever Apple is directed to want. They are inventing a world in which every product you purchase owes its highest loyalty to someone other than its owner. https://t.co/k3SxaFSJEJ
246
7K
3K
248
0
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
@LuccaSoftware Merci pour votre retour, jโ€™imagine quโ€™il en est de mรชme pour le numรฉro de tรฉlรฉphone ? Jโ€™arrรชte de vous embรชter ensuite !
1
0
0
0
0
Toussinours's profile image
๐™ฐ๐š—๐š๐š‘๐š˜๐š—๐šข โšก @Toussinours
hello @LuccaSoftware Est-il possible de cacher sa date d'anniversaire sur son profil afin que cela n'apparaisse pas dans le trombinoscope ?
1
0
0
0
0

Last Seen Users on Sotwe

ttyuurertggf's profile image
SIRDAลžINIZ ๐Ÿ”ฅ
Seen from Turkey
StwParuhBaya's profile image
suka binor stw paruh baya
Seen from Indonesia
IstriJual's profile image
jual istri
Seen from Indonesia
PuntonW's profile image
Punton Winx
Public_Catgirl1's profile image
โค๏ธ้œฒๅ‡บๅๅทฎๆ–‡ๅŒ–ๅคงไฝฟโค๏ธ๏ผˆ้œฒๅ‡บ่ฝฌๆŽจ๏ผ‰
JuanAnt56917776's profile image
CHAPINAS
Seen from United States
ZeeRight's profile image
Thingolicious๐ŸŒˆ
Seen from South Africa
MistressLuna14's profile image
โšœ๏ธ Mistress Luna ๐Ÿ”ž
Seen from Germany
Thinhphat1310's profile image
Thแป‹nh Phรกt
Seen from Vietnam
mry1991969's profile image
ู…ุฑูŠุง
Seen from France

Trends for you

1
Corbin
Under 10K tweets
2
Xbox
Under 10K tweets
3
Mormons
Under 10K tweets
4
Good Monday
Under 10K tweets
5
Welker
Under 10K tweets
6
Raman
Under 10K tweets
7
California
Under 10K tweets
8
Persona 6
Under 10K tweets
9
Spyro
Under 10K tweets
10
#TonyAwards
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.2M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109.1M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.3M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.6M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
86.9M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.7M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.3M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.4M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
68.7M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.5M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
cnn's profile image
17
CNN Verified account
@cnn
61.9M followers
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61.2M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60M followers