>What is the best way to store a password in a table. I probably wouldn't want to just store the password as text in a field. How would you store that type of information?
I don't know if it's the "best", but an easy way to secure your passwords over plain-text is to one-way encrypt them in the table. By one-way, i mean that there should be no way to turn an encrypted password back into the password itself. (IE: If I know my password is "Secret" and i find my entry is "terceS" then i can reverse other's passwords too)
Encrypt the password that the user enters, and compare it against the encrypted value stored in the table. As long as the encryption function yields a unique result for each input, you should have an exact one-one relation between plain text, and the password table.
(i'd check that FAQ for possible encryption functions if you don't feel comfortable creating your own)
Précédent
Répondre
Voir le fil de ce thread
Voir le fil de ce thread à partir de ce message seulement
Voir tous les messages de ce thread
Voir tous les messages de ce thread à partir de ce message seulement