Reputation: 9306
Getting Password Salt when Using Jasypt
I want to use Jasypt to encrypt user passwords using a random Salt. Is it possible to get random slat from Jasypt? How could I get it?
Thanks, Feras
Upvotes: 2
Views: 5230
Answers (2)
Reputation: 7465
Using a random salt is in fact the default behaviour of all jasypt encryption artifacts, and this salt is generated securely (using SHA1PRNG).
Please read http://www.jasypt.org/howtoencryptuserpasswords.html in order to know more about the way passwords are processed in jasypt.
Upvotes: 3
Reputation: 28628
Never used Jasypt, but from their documentation:
A salt of the specified size is generated (see org.jasypt.salt.SaltGenerator). If salt size is zero, no salt will be used. It is advisable that you use a random salt generator like org.jasypt.salt.RandomSaltGenerator (which is the default) for higher security.
you can use RandomSaltGenerator.
Upvotes: 0
Related Questions
- Jasypt encrypted String not being able to decrypt on another machine
- encrypting password with Java library jasypt digest
- How can I get password(key) using encrypt string and plain text in jasypt?
- Getting error org.jasypt.exceptions.EncryptionInitializationException: Password not set for Password Based Encryptor
- Check encrypted password: org.jasypt.exceptions.EncryptionOperationNotPossibleException
- Encrypt & Decrypt password using Jasypt
- Jasypt doesn't want to decrypt strings
- Password Encryption and Decryption with Jasypt and random salt
- Joomla 3.3 crypting in java, get salt value
- Jasypt | StrongPasswordEncryptor | Password not matching