On 6 September 2010 16:11, Ken Kixmoeller <kixjag...@comcast.net> wrote:
> 2. As Amit kind of said, no password should be stored in a table (available
> on a web server) without encrypting the password information.

I'd go further and say "no password should be stored in a table".

A hash of the salted password, sure.

Richard Quadling
Twitter : EE : Zend
@RQuadling : e-e.com/M_248814.html : bit.ly/9O8vFY

PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to