On Thu, Jan 04, 2001 at 10:53:12PM -0500, some SMTP stream spewed forth:
> Gordan Bobic wrote:
> >
> > > Here's a crypted password: 00xNyXeahk4NU. I crypted it in perl as
> > > crypt(, salt). So what is ?
> > >
> > > The point of a one way hash is that it's, well, one way. Pretty much
> > > t
Gordan Bobic wrote:
>
> > Here's a crypted password: 00xNyXeahk4NU. I crypted it in perl as
> > crypt(, salt). So what is ?
> >
> > The point of a one way hash is that it's, well, one way. Pretty much
> > the only way you're going to figure out what password that encrypted
> > string correspon
Jens Hartwig wrote:
>
> > [...]
> > Isn't this just as bad? If you store the encrypted password, that doesn't
> > help you in the slightest in this case, because if you can breach the list
> > of encrypted passwords, you still know what you need to send as the
> > "password" from the front end t
> > [...]
> > Isn't this just as bad? If you store the encrypted password, that
doesn't
> > help you in the slightest in this case, because if you can breach the
list
> > of encrypted passwords, you still know what you need to send as the
> > "password" from the front end to let you into the data
> [...]
> Isn't this just as bad? If you store the encrypted password, that doesn't
> help you in the slightest in this case, because if you can breach the list
> of encrypted passwords, you still know what you need to send as the
> "password" from the front end to let you into the database.
> [
> I usually just run 'crypt()' on the clear text before storing it to the
> backend ...
Isn't this just as bad? If you store the encrypted password, that doesn't
help you in the slightest in this case, because if you can breach the list
of encrypted passwords, you still know what you need to send
From: <[EMAIL PROTECTED]>
> I order to escape from .htaccess, I want to save user passwords in my
> database.
> However, passwords appear clear in the database.
> How passwords can be crypted in the database?
>
> I use PHP 3.0.16, Cobalt Raq3i.
Hmmm linux users that haven't heard of
I usually just run 'crypt()' on the clear text before storing it to the
backend ...
On Fri, 22 Dec 2000 [EMAIL PROTECTED] wrote:
> Hello,
>
> I order to escape from .htaccess, I want to save user passwords in my
> database.
> However, passwords appear clear in the database.
> How passwords ca
Hello,
I order to escape from .htaccess, I want to save user passwords in my
database.
However, passwords appear clear in the database.
How passwords can be crypted in the database?
I use PHP 3.0.16, Cobalt Raq3i.
Thanks