It is not simply wrong. The usual Merkle-Damgard padding only means that you get... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		pbsd on June 14, 2013 \| parent \| context \| favorite \| on: Don’t Hash Secrets (2008) It is not simply wrong. The usual Merkle-Damgard padding only means that you get something like SHA1(foo \|\| garbage \|\| bar) instead, garbage being smaller than the hash's block size.

maaku on June 14, 2013 [–]

Maybe disingenuous was a better word. The "garbage" in the middle still protects against most (though not all) attacks.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact