holyboy
|
| Posted: 07/24/2001, 3:42 AM |
|
how to encrypt password stored in database?
|
|
|
 |
Alexey Alexapolsky
|
| Posted: 07/24/2001, 7:08 AM |
|
Use crypt function over password field in "Before Insert" field of your
registration form.
And then in ALL login forms of your app , in page/Open event you must
access password input variable via HTTP_POST_VARS or HTTP_GET_VARS
array and encrypt it , so that Login Form would compare ebcryped strings 
--
Alex
CC
holyboy <holyboy@thewatercooler.com> wrote in message
news:9jjjac$hn2$1@news.codecharge.com...
> how to encrypt password stored in database?
>
|
|
|
|
Walker P.
|
| Posted: 07/24/2001, 10:24 AM |
|
Also refer to the following article concerning password encryption in the
PHP language.
Walker P.
CC Support
|
|
|
|
Val Raemaekers
|
| Posted: 07/24/2001, 12:17 PM |
|
Which link ???
"Walker P." <walkerp@codecharge.com> wrote in message
news:9jkb06$3e7$1@news.codecharge.com...
> Also refer to the following article concerning password encryption in the
> PHP language.
>
> Walker P.
> CC Support
>
>
|
|
|
|
Chinfei Chuang
|
| Posted: 07/26/2001, 5:44 PM |
|
Where is the article?
Chinfei Chuang
"Walker P." <walkerp@codecharge.com> ?????
news:9jkb06$3e7$1@news.codecharge.com...
> Also refer to the following article concerning password encryption in the
> PHP language.
>
> Walker P.
> CC Support
>
>
|
|
|
|
Volker Wawer
|
| Posted: 07/29/2001, 3:12 AM |
|
The best way I think is to use md5 to encrypt the password md5 is a hash
algorithm
to encrypt any datastream and to produce a 32-letter string (128 bit). It is
free to use.
You can implement it like this:
User choose his password:
1. take the password from the form and encrypt it with md5 function ->
md5-string
2. Insert the md5-string to your database
User verification
1. take the password from the form and encrypt it with md5 function -> md5
string
2. look in your database if the password-string (md5) is equal to your just
generated string
A few things to say:
1. you are not able to decrypt the password, you can only check if it is the
same
but the best thing is that a password is never transfered over the net.
2. md5 is part of perl
3. You can find mor information here:
http://userpages.umbc.edu/~mabzug1/cs/md5/md5.html
there are afew links to other pages where you can get sourcecode for
java, C, C++ and ASP
A hint to codecharge:
It would be fine if you can inplement md5 as a standard funktion into
codecharge for login.
Best regards Volker
"holyboy" <holyboy@thewatercooler.com> schrieb im Newsbeitrag
news:9jjjac$hn2$1@news.codecharge.com...
> how to encrypt password stored in database?
>
|
|
|
|
