If you had a completely random salt, the hashes from the database even if they were obtained would not be found in a hash library anyways, so your reasoning isn't exactly justified, simply overblown for the purpose.
And again, if security is that big of a concern, you should not be using md5 or sha1 in the first place no matter how many times over you hash it.
|