#### [[notes_WebDev FA21]] **Creator**:: [[Nathan Eloe]] **Source**:: **Covers**:: [[computer science]] - When encrypting a password and the user changes the password add in salt (random string) of characters to change the encryption process - Modern security - Use more bits for key and for salt - Authentication will typically persist on the web - Passport docs suck - It's very easy to make scripting attacks on interpreted languages - The web browser does not know the difference between the data and code, that is on us