I want to make my user's passwords more secure, than just a one way encryption. My plan is to make a salt generator, then add it to the password, and encrypt it. Then add the salt to the database, so when the user types in their password, I can check the password with the random salt generated from the script which is in the DB.
My question is; is this secure enough?
Here is how I want to generate salt.
have the script generate a letter from a-r, and a number from 1-10. Then add them so for example: a6, then I want to add 6 to the a, so I get g, and then add 10 to the generated number. So over all I get something like this a6g16.
Would that help?
-Thanks Guys!