 |  |  |  |  |  |  |  |
The Most Secure Way Encrypt and Protect Strings
Please support our PHP advertiser: PostgreSQL or MySQL? Compare and contrast the two most popular open source databases
Thread Solved |
•
•
Join Date: Sep 2008
Posts: 173
Reputation: 
Solved Threads: 13
Junior Poster
Hello,
I am working on a login script for a personal site. The problem is though, I need to have the best and most secure protection there is for the login system I am creating (I will not go into specifics but the users will have access to very sensitive data). The users will each have a password and username. I need a way that is possible with all PHP installations (I am planning on using this script on other hosts for other sites and need something that can be easily installed without the need for any special functions not included in a normal PHP installation) to secure user passwords in the most secure way possible. I have other methods of security, but they are not for password encryption and more for validation of users. Currently now, I am just using md5() to encrypt the passwords. Could someone (that has a great deal of security experience) point me in the right direction for a very secure system. Any links to articles, code samples, or explanations will be greatly appreciated!!!
Thanks So Much Guys (And Girls)
FlashCreations
I am working on a login script for a personal site. The problem is though, I need to have the best and most secure protection there is for the login system I am creating (I will not go into specifics but the users will have access to very sensitive data). The users will each have a password and username. I need a way that is possible with all PHP installations (I am planning on using this script on other hosts for other sites and need something that can be easily installed without the need for any special functions not included in a normal PHP installation) to secure user passwords in the most secure way possible. I have other methods of security, but they are not for password encryption and more for validation of users. Currently now, I am just using md5() to encrypt the passwords. Could someone (that has a great deal of security experience) point me in the right direction for a very secure system. Any links to articles, code samples, or explanations will be greatly appreciated!!!
Thanks So Much Guys (And Girls)
FlashCreations
•
•
Join Date: Dec 2005
Posts: 5,851
Reputation: 
Solved Threads: 749
http://en.wikipedia.org/wiki/MD5
MD5 isn't really that safe anymore.
> I will not go into specifics but the users will have access to very sensitive data
Like banking or medical details?
Many countries have legal requirements for compliance (and such like).
> I need to have the best and most secure protection there is for the login system I am creating
That kind of 'best' comes with high price tags.
It's not something you're likely to be able to lash together yourself with a few bits of help from an online forum.
MD5 isn't really that safe anymore.
> I will not go into specifics but the users will have access to very sensitive data
Like banking or medical details?
Many countries have legal requirements for compliance (and such like).
> I need to have the best and most secure protection there is for the login system I am creating
That kind of 'best' comes with high price tags.
It's not something you're likely to be able to lash together yourself with a few bits of help from an online forum.
•
•
Join Date: Sep 2008
Posts: 173
Reputation:
Solved Threads: 13
Junior Poster
Exactly. All I'm looking for is the best that can be done with PHP.
•
•
Join Date: Jan 2007
Posts: 276
Reputation:
Solved Threads: 15
Posting Whiz in Training
Use a dynamic and static salt combination?
Article from codeigniter -- but the concept is the same.
Article from codeigniter -- but the concept is the same.
If you know ASP, you can save other daniweb members from idiots like me by helping out in this forum.
Visit this thread if your username starts with one of the following letters: B D F H J L N P R T X Y Z.
Visit this thread if your username starts with one of the following letters: B D F H J L N P R T X Y Z.
 |
Other Threads in the PHP Forum
- Previous Thread: Hi I need to data search by php
- Next Thread: Future of PHP
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Related Forum Features
Latest PHP Posts
- Today's Posts
- Unanswered Threads
5.2.10 action apache api array beginner beneath binary broken cakephp checkbox class classes cms code cron curl database date destroy display dynamic echo echo$_get[x]changingitintovariable... email encode error fcc file files folder form forms function functions google header howtowriteathesis href htaccess html image images include insert ip javascript joomla limit link local login mail memberships menu mlm mod_rewrite multiple multipletables mysql mysqlquery neutrality oop open passwords paypal pdf php provider query radio random record remote rss script search server sessions sockets source space sql strip_tags syntax system table template thesishelp tutorial update upload url validator variable video voteup web window.onbeforeunload=closeme; youtube
