>Hi,
>
>I am designing a new module where each user would have to be assigned a user name/id and password. This information will be stored in a SQL Server table. I have two questions:
>1. Is it acceptable practice to store the user name/id un-encrypted (readable by anyone)?
>2. What method of encrypting the password would you recommend (does not have to be Super Secure) that later can be used by another (e.g. .NET) application?
>
>TIA
In addition to Craigs answer: Anything non
supersecure as the same as plain text. Any script kiddy will hack it, just for fun.
Words are given to man to enable him to conceal his true feelings.
Charles Maurice de Talleyrand-Périgord
Weeks of programming can save you hours of planning.
OffThere is no place like [::1]