7 Topics

Member Avatar for
Member Avatar for mattyd

Hello. I am beginning the process of implementing password encryption for User's on my future site (The site is not live or available yet). I have been reading up on hashing passwords and storing them in the database. **My question are as follows**: * I believe it has said that …

Member Avatar for iamthwee
0
386
Member Avatar for happygeek

**How do passwords work?** What a password isn't, or at least really shouldn't be, is some kind of secret word or phrase that is simply compared against a table of usernames in a login database. Such plaintext systems are about as secure as a chocolate padlock on a furnace door. …

Member Avatar for Hiroshe
1
1K
Member Avatar for fheppell

I've run this code to generate two encrypted passwords from a plaintext password echo crypt("TestingTesting123"); echo "<br />"; echo crypt("TestingTesting123"); The two strings are identical but when I run it I get this output $1$/PGpeshL$UhmiaU/jlaJTWZV8g7Ze4/ $1$MnRnzohZ$zh9VpHPOwYejI.XR76vmC/ Some people have reccomended crypt() as a good password encryptor, but how are you …

Member Avatar for annaharris
0
181
Member Avatar for scaiferw

I'm dipping my toe in the water of salted passwords by upgrading an older webapp, and would like to present the rough outline of how my system would work in the hope that those with more experience than I might tell me if I'm going in the right direction; In …

Member Avatar for diafol
0
193
Member Avatar for dschuett

I have been doing some research on how to go about using a random salt per user's password. There are a few things that I am still unsure about. It is easy enough to store a random hash using something as the following: [CODE] <?php $password = 'MySuperSectretPassword!'; $salt = …

Member Avatar for dschuett
0
138
Member Avatar for diafol

Hi All, I'm in the middle of building a new login/registration class and was going to apply a hashing function to the pw and an activation token, when I came across the hash_hmac function. I've tried finding out more about it, but info is pretty scarce. Could anybody shine some …

Member Avatar for diafol
0
267
Member Avatar for Bheeman89

Dear Friends, I have a question in security programming. As all of us know, when we have a database with passwords or anything sensitive, we would like to encrypt it so it is not readable by other. Now I want to know, which of the method is secured or less …

Member Avatar for twiss
0
177

The End.