On 2014-04-23 03:59, Paul Hill wrote:
On 22 April 2014 22:53, <[email protected]>
wrote:
I'm reviewing my logic once for for saving user login passwords. In
all
cases, I'm using Craig Boyd's VFPEncryption class. In one app, I was
using
ENCRYPT(UserPwd + Salt). In another app, I was using HASH(UserPwd +
Salt).
An encrypted password is reversible, a hashed password is not.
Generally it is normal to use a hash, but it depends on your needs.
Is one better for this than the other, or should I combine them like
ENCRYPT(HASH(UserPwd+Salt)+Salt)?
Seems overkill!
Right....so it's like a Checksum of sorts that stored and the user's
entered password is compared with the checksum that's stored. Ok, hash.
Checksum, hash, ...whatever. :-)
Thanks,
--Mike
_______________________________________________
Post Messages to: [email protected]
Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox
OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech
Searchable Archive: http://leafe.com/archives/search/profox
This message:
http://leafe.com/archives/byMID/profox/[email protected]
** All postings, unless explicitly stated otherwise, are the opinions of the
author, and do not constitute legal or medical advice. This statement is added
to the messages for those lawyers who are too stupid to see the obvious.
