> I am trying to create a login page. In ASP I convert every letter
> through a loop from the password to ASC() ,add a number then convert
> it back and save it in the table. I am thinking about doing the same
> thing in ColdFusion. Is this a good way or is there a better way to
> handle passwords?
You should have a look at the hash() function. It provides one way
encryption of a string.
Nothing is 100% infalliable, but this is a reasonable way of ensuring
the security of passwords. Store the hashed password in your database,
then when ever you need to check a password hash the given password and
compare it to the entry in the database. This will make passwords case
sensitive.
Stephen
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
