Better to save password hashes as txt file or reg key?
-
I figured this was a general programming question and wanted to get opinions on the security of saving password hashes. At the moment I am saving the password hashes in the Default System32 folder in a file with a un-register extension. The has can be easily read if opened in notepad however. Right now I am debating on wether saving the hash as a Regkey would be safer or just a waste of time. Your opinions are both welcomed and wanted ._._._._._.-.-.-.-.-._._._._._.-.-.-.-.-._._._._._.-.-.-.-.- SicherGrenzen
clean and elegant.
-
I figured this was a general programming question and wanted to get opinions on the security of saving password hashes. At the moment I am saving the password hashes in the Default System32 folder in a file with a un-register extension. The has can be easily read if opened in notepad however. Right now I am debating on wether saving the hash as a Regkey would be safer or just a waste of time. Your opinions are both welcomed and wanted ._._._._._.-.-.-.-.-._._._._._.-.-.-.-.-._._._._._.-.-.-.-.- SicherGrenzen
clean and elegant.
Writing to system32 is bad, if you want normal user accounts to use your program. Anything you write to can be monitored with FileMon and RegMon, so picking a reg key over a file doesn't gain you anything.
--Mike-- Visual C++ MVP :cool: LINKS~! Ericahist | PimpFish | CP SearchBar v3.0 | C++ Forum FAQ