For many years, I have been in the habit of hashing the passwords in the database and I was wrapped when I discovered that Wappler makes this process so easy.
Working on my latest project, I questioned this practice mainly because it creates unwanted barriers.
When reading articles on the web, I see things like Storing user passwords is a critical component for any web application.; but I never see a concrete reason of why except to say that users tend to use the same password on multiple sites. Surely this is not the problem of the web developer.
Surely, once the data is exposed, the password is of least value to the attacker. Why then is the more important data such as name and date of birth (which contribute to impersonation) not hashed? I know that this would make the data unusable; but the question remains: why hash passwords?
Last updated: