Well, simply that when you get a password you encrypt it and check if that matches the encrypted password & voila! The hashing algorithms work on the premise that it should be very hard to find two different passwords hashing to the same value.
If you have some spare time, read about the 'birthday attack'. > -----Original Message----- > From: Teresa Raymond [mailto:[EMAIL PROTECTED]] > Sent: 01 June 2002 07:02 AM > To: Felix Geerinckx; Perl Beginners List > Subject: Re: Crypt:: or ??? > > > I thought that I would need to decrypt to check to see if the > password submitted was the correct password, please explain why this > is not so... > > >on Fri, 24 May 2002 21:54:09 GMT, Teresa Raymond wrote: > > > >> Which module is the easiest to learn and offers the best > >> encryption/decryption? There were so many that I did not feel > >> capable of choosing one at CPAN. Encryption/decryption > for username > >> and passwords > > > >For usernames and passwords, 'crypt' should be sufficient. > > > > perldoc -f crypt > > > >Also, please note that there really is no reason to be able > to decrypt > >passwords. > > > >-- > >felix > > > >-- > >To unsubscribe, e-mail: [EMAIL PROTECTED] > >For additional commands, e-mail: [EMAIL PROTECTED] > > > -- > ------------------------------- > - Teresa Raymond - > - Mariposa Net - > - http://www.mariposanet.com - > ------------------------------- > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > NOTICE: This message and any attachments are confidential and intended solely for the addressee. If you have received this message in error, please notify the sender at Nanoteq (Pty) Ltd immediately, telephone number +27 (0) 12 672 7000. Any unauthorised use, alteration or dissemination is prohibited. Nanoteq (Pty) Ltd accepts no liability whatsoever for any loss whether it be direct, indirect or consequential, arising from information made available and actions resulting there from. -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
