Thanks for the tip on the mcrypt.
I actually had read up a little about it.
I will have to investigate more now.
Thanks for the suggestion.

Karl


On Dec 22, 2009, at 4:54 PM, Karl DeSaulniers wrote:

Hi Andy,
Sorry, I guess I should have explained better.
I was speaking about what comes up on the preview page for the information. I wanted the passwords to display as bullets so they could not see the encrypted text, nor be able to copy the text and try it in any decryption process if they happened to get
to that page where the information can be displayed.

Karl

On Dec 22, 2009, at 4:49 PM, Andy Shellam wrote:

Hi Karl,


Yes you are correct. I do not store a plan text password.

Great stuff - so many systems I've seen use plain-text passwords it's little wonder there's so much data theft.


If you cant read the encrypted text, you cant decrypt it right?

Wrong. There are two-way encryption methods requiring the use of a common key, and an initialization vector for some protocols - see the mcrypt library which PHP can use (I had a play around with it quite recently.)

http://uk2.php.net/manual/en/function.mcrypt-decrypt.php

Regards,
Andy

Karl DeSaulniers
Design Drumm
http://designdrumm.com


Karl DeSaulniers
Design Drumm
http://designdrumm.com

Reply via email to