*> Hash it on the client? So are you not using salted hashes for your password s...

		throwawaymath on Nov 1, 2018 \| parent \| context \| favorite \| on: JavaScript is now required to sign in to Google > Hash it on the client? So are you not using salted hashes for your password store? There is no reason you can't also salt on the client. Salts do not need to be secret. The substantial constraint you outlined in your comment isn't a problem.