Upgrading Legacy Systems
Explore methods to upgrade legacy password storage in Node.js applications by replacing MD5 hashes with BCrypt. Understand two practical paths: silent user upgrades upon login or re-hashing existing database entries immediately, ensuring stronger password encryption and safer authentication.
We'll cover the following...
We'll cover the following...
How do you upgrade your existing system that has MD5 passwords with no salt?
I’m going to give you two options.
-
Path 1 - As each user logs in, silently upgrade their hash to use BCrypt. They won’t even know the difference. Soon enough, you will have a database of well-secured passwords.
-
Path 2 - Use BCrypt to hash the existing MD5 hashes in the database. New passwords will be hashed with MD5 ...