You don't need to do anything like that; bcrypt does all this stuff for you. Don... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tptacek on Dec 14, 2010 \| parent \| context \| favorite \| on: How To Safely Store A Password You don't need to do anything like that; bcrypt does all this stuff for you. Don't salt bcrypt.

youngian on Dec 14, 2010 [–]

I think people would be a lot less confused if you said this first. Say "Don't salt bcrypt, bcrypt salts for you" and you'll have to explain yourself less.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact