>To address your encryption of passwords, are you sure you want to
manage the
>encryption of the passwords and storing them in the database
yourselves ?
>Because this way, YOU will landup taking care of the encryption
algorithm.
>Whereas if you use the database's inherent way of managing the
roles and
>their security, (for eg. with Oracle, grant/revoke commands) they
do all
>this for you.
>HTH
>
>Surya
I agree that encryption should best be left to the database.
However, my application requires that I store the last 5 passwords
per user for that application. When the user changes his/her
password, a check is done to ensure that it is not the same as any
of the last 5.
I am using Sybase 11. It encrypts the current pwd, but what do I do
abt the others?
Is there a way of specifying that a particular column in a table be
stored encrypted?
(It seems to be more of a database problem than a PFC one.
Apologies)
Regards and thanx to everybody who mailed me with advice
Regards
Sreekumar
> [EMAIL PROTECTED] HOSTED BY IIGG, INC. FOR HELP WITH LIST SERVE COMMANDS, ADDRESS
> A MESSAGE TO [EMAIL PROTECTED] WITH THE FOLLOWING MESSAGE: help pfcsig
> SEND ALL OTHER INQUIRES TO [EMAIL PROTECTED]
