I need to access and read the files in a password protected directory with a
PHP script using the readdir function. I'm already making users login to a
secure area, so I don't want to make them enter a password again to access
the files - is there a way to include the password with the
On Tue, Nov 2, 2010 at 1:05 PM, Ben Miller biprel...@gmail.com wrote:
I need to access and read the files in a password protected directory with a
PHP script using the readdir function. I'm already making users login to a
secure area, so I don't want to make them enter a password again to
On Tue, Nov 2, 2010 at 13:05, Ben Miller biprel...@gmail.com wrote:
I need to access and read the files in a password protected directory with a
PHP script using the readdir function. I'm already making users login to a
secure area, so I don't want to make them enter a password again to access
Hi All,
I have an input field with type=password.
I am trying to do some error checking to see if the user puts a value
in after they submit the form (i.e not left it blank)
Here is what I have:
on form:
Password: input id=PASSWORD name=PASSWORD type=password
size=15
In PHP error
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
Hi All,
I have an input field with type=password.
I am trying to do some error checking to see if the user puts a value in
after they submit the form (i.e not left it blank)
Here is what I have:
On Thu, Mar 12, 2009 at 15:05, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
if (empty($_POST[PASSSWORD]))
{ $GERROR=TRUE;}
[snip!]
What am I doing wrong?
Spelling.
Password only has two S's.
--
/Daniel P. Brown
daniel.br...@parasane.net || danbr...@php.net
Andrew Ballard wrote:
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
Hi All,
I have an input field with type=password.
I am trying to do some error checking to see if the user puts a value in
after they submit the form (i.e not left it
if (empty($_POST[PASSSWORD]))
{ $GERROR=TRUE;}
If that's a direct copy/paste from your actual code, there is an extra
S in PASSWORD. Also, you should enclose the array key in quotes:
if (empty($_POST['PASSWORD']))
{ $GERROR='TRUE'; }
It is official I am a DOPE! Thank you, yes, I did not
Afan Pasalic schreef:
Andrew Ballard wrote:
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
Hi All,
I have an input field with type=password.
I am trying to do some error checking to see if the user puts a value in
after they submit the
On Thu, Mar 12, 2009 at 2:39 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
if (empty($_POST[PASSSWORD]))
{ $GERROR=TRUE;}
If that's a direct copy/paste from your actual code, there is an extra
S in PASSWORD. Also, you should enclose the array key in quotes:
if
Jochem Maas wrote:
Afan Pasalic schreef:
Andrew Ballard wrote:
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
Hi All,
I have an input field with type=password.
I am trying to do some error checking to see if the user puts a
On Thu, Mar 12, 2009 at 3:39 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
if (empty($_POST[PASSSWORD]))
{ $GERROR=TRUE;}
If that's a direct copy/paste from your actual code, there is an extra
S in PASSWORD. Also, you should enclose the array key in quotes:
if
haliphax wrote:
On Thu, Mar 12, 2009 at 2:39 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
if (empty($_POST[PASSSWORD]))
{ $GERROR=TRUE;}
If that's a direct copy/paste from your actual code, there is an extra
S in PASSWORD. Also, you should enclose the array
prueba con trim() :
$pass=trim($_POST[PASSSWORD]);
if (empty($pass))
{
$GERROR=TRUE;
}
Atte.
Rodrigo
(09) 7 7996571
On Thu, Mar 12, 2009 at 4:05 PM, Jason Todd Slack-Moehrle
mailingli...@mailnewsrss.com wrote:
Hi All,
I have an input field with type=password.
I am trying to do some
On Thu, Mar 12, 2009 at 16:04, Rodrigo Escares
rodrigo.esca...@gmail.com wrote:
prueba con trim() :
$pass=trim($_POST[PASSSWORD]);
if (empty($pass))
{
$GERROR=TRUE;
}
Incorrecto, Rodrigo. Tambien, utilice por favor solamente el
ingles en esta lista --- usted puede encontrar la lista
I'm going to ask you PHP gurus if someone can give me a hand in trying to
get this resolved. I'm fairly new to PHP and learning as I go.
I've got two page login.php and video.php. Video.php is supposed to be
protected i.e. if someone clicks on the direct link or brings up the page in
a browser,
On Jun 17, 2008, at 5:33 PM, R.C. wrote:
I'm going to ask you PHP gurus if someone can give me a hand in
trying to
get this resolved. I'm fairly new to PHP and learning as I go.
I've got two page login.php and video.php. Video.php is supposed
to be
protected i.e. if someone clicks on the
I forgot about the mail thing...
Begin forwarded message:
From: Philip Thompson [EMAIL PROTECTED]
Date: June 17, 2008 6:52:15 PM CDT
To: PHP-General List php-general@lists.php.net
Subject: Re: [PHP] Password Protecting a page and email notification
On Jun 17, 2008, at 5:33 PM, R.C. wrote
Hey folks,
I just wanna say thanks for whole help you've had give to me. I did
solve my problem with clues you give to me. Now, I have a server exclusively
to my project and I enabled the system command and zip command works fine.
Thanks again,
Petrus Bastos.
On Sat, January 19, 2008 2:11 pm, Nathan Nobbe wrote:
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not supplied will be
automatically
generated and presumably become a prefix or suffix of the returned
string.
Or, in some algorithms, gets buried in
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
I always make sure that I use a site specific salt which is just
appended on the user supplied value. I started doing that when I read
that people had created huge databases of hashed values that they can
just search on. At least this way
Richard Lynch wrote:
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
I always make sure that I use a site specific salt which is just
appended on the user supplied value. I started doing that when I read
that people had created huge databases of hashed values that they can
just search on.
On Tue, January 22, 2008 7:43 pm, Chris wrote:
Richard Lynch wrote:
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
I always make sure that I use a site specific salt which is just
appended on the user supplied value. I started doing that when I
read
that people had created huge
Richard Lynch wrote:
On Tue, January 22, 2008 7:43 pm, Chris wrote:
Richard Lynch wrote:
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
I always make sure that I use a site specific salt which is just
appended on the user supplied value. I started doing that when I
read
that people
alright, so you guys have responded and im really appreciative.
you have me thinking now..
so what are the real issues here?
1. portability
2. security (obviously)
im wondering now if crypt() is really even so practical. especially
considering the deal where only 2 characters are
On Wed, 2008-01-23 at 00:40 -0500, Nathan Nobbe wrote:
alright, so you guys have responded and im really appreciative.
you have me thinking now..
so what are the real issues here?
1. portability
2. security (obviously)
im wondering now if crypt() is really even so practical.
My apologies Robert, Gmail sucks. I'm bouncing this back to the list, where it
belonged in the first place. Feel free to make corrections if I've
mischaracterized
what you wrote. Good luck with that, btw, but don't expect me to engage.
Robert Cummings wrote:
And THAT does remind me of my MUD
On Mon, 2008-01-21 at 14:37 -0500, Mike Potter wrote:
You should have said yes and quit while you thought you were ahead.
I'm not trying to get ahead... I didn't know I was competing. Are we
competing? I thought I was just answering posts.
that was me saying that there is certainly a good
Nathan Nobbe wrote:
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not
On Sat, 2008-01-19 at 23:17 -0500, Nathan Nobbe wrote:
thanks for the great responses guys.
i guess what im really getting at though is, if crypt() will embed
a salt in the value it returns automatically, is there any benefit to
creating a salt to pass to the second argument and storing that
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not supplied will be
Nathan Nobbe schreef:
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not
On Jan 19, 2008 8:02 PM, Jochem Maas [EMAIL PROTECTED] wrote:
Nathan Nobbe schreef:
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
-Original Message-
From: Eric Butera [mailto:[EMAIL PROTECTED]
Sent: Sunday, January 20, 2008 12:24 AM
To: Jochem Maas
Cc: Nathan Nobbe; PHP General List
Subject: Re: [PHP] password hashing and crypt()
On Jan 19, 2008 8:02 PM, Jochem Maas [EMAIL PROTECTED] wrote:
Nathan Nobbe
thanks for the great responses guys.
i guess what im really getting at though is, if crypt() will embed
a salt in the value it returns automatically, is there any benefit to
creating a salt to pass to the second argument and storing that
as well?
conceivably, passwords already have a salt using
visit http://www.softswot.com/Form1Password.php
On 3/21/07, Kevin [EMAIL PROTECTED] wrote:
Hello Everyone!
I am new to PHP but I am hoping you guys can help me. I would like
to have my users go to a page that looks like
http://f4.zittle.com/admin, or even just a drop down window or
Hello Everyone!
I am new to PHP but I am hoping you guys can help me. I would like
to have my users go to a page that looks like
http://f4.zittle.com/admin, or even just a drop down window or
something whre they can enter a username and password. Depending on
the username, and of course
on
the username, and of course assuming the password is correct, they
will be forwarded to a certain page or directory. I think I need to
use a DB but I am not sure anything more. Sorry it is such a simple
question but hopefully all of you can help! Thanks in advanced!!!
Google PHP Password
Jason Karns wrote:
I'm trying to find a way to password protect a directory. I currently have
an authentication and authorization system in place for pages in my
directory. I'd prefer to use my existing system somehow (as it includes
OpenID authentication) as opposed to using htaccess and
Well, you could try to edit each PHP file and add a piece of login code at
top, but if the directory will also contain images (which need a password to
access), it would not be possible that way.
Tijnema
On 3/4/07, Jason Karns [EMAIL PROTECTED] wrote:
I'm trying to find a way to password
Hi people
hi have a problem
i need a script for make a ftp folder that have a password for enter
Have anyway to do this??
/mrpostiga
-Original Message-
From: Helder Lopes [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 15, 2007 5:32 AM
To: php-general@lists.php.net
Subject: [PHP]Password and FTP Folder
Hi people
hi have a problem
i need a script for make a ftp folder that have a password for enter
Hello,
I'm using php and apache2 on a freebsd box. I know about .htaccess that
the web server can provide, but i'm looking for something php can do, i want
it to pop up a page when a user requests certain files, asking for a
username and password. If those are valid the user is taken to a
This is impossible with only PHP. You might need a combination of PHP
and AJAX [Javascript].
On 1/11/07, Dave [EMAIL PROTECTED] wrote:
Hello,
I'm using php and apache2 on a freebsd box. I know about .htaccess that
the web server can provide, but i'm looking for something php can do, i want
Dave wrote:
Hello,
I'm using php and apache2 on a freebsd box. I know about .htaccess
that the web server can provide, but i'm looking for something php can
do, i want it to pop up a page when a user requests certain files,
asking for a username and password.
Hi,
Thank you every one for responding to my mail and
giving valuable comments and suggestions for it.
Thanx,
..Deeps..
--- Deep [EMAIL PROTECTED] wrote:
Hi evryone,
I want to implement a site where i would like to
encrypt the password of the users and store it into
mysql
Hi evryone,
I want to implement a site where i would like to
encrypt the password of the users and store it into
mysql
database. My question is that , In case if the user
has forgotten the password how can he retrieve the
password(which is already encrypted and stored...the
user should be
Hi
You are doing the right thing storing passwords encrypted!
You may use any of the one way digest like secure hash 1 (sha1) or md5 or a
combination to generate a hash.
In case your user forgets his password, there is no way to reconstruct it.
You need to provide an interface where the
I want to implement a site where i would like to
encrypt the password of the users and store it into
mysql
database. My question is that , In case if the user
has forgotten the password how can he retrieve the
password(which is already encrypted and stored...the
user should be able to get the
On Tuesday 10 May 2005 16:05, Deep wrote:
Hi evryone,
I want to implement a site where i would like to
encrypt the password of the users and store it into
mysql
database. My question is that , In case if the user
has forgotten the password how can he retrieve the
password(which is
im sure it cant be that hard to write:
when user logs in check the last date their password was set.
if 30 days then prompt to connect and dont allow user to do anything
else until password has been changed and new expiry date is set (which
will now be less than 30 days)
use an include for it
I'm looking for a script that would require a user to change their password
every 30 days. Does anyone use a script that has functionality similar to
what I'm looking for?
Thanks,
Dave
HTC Disclaimer: The information contained in this message may be privileged
and confidential and
Theres instant2c pro at securecents.com, but that might be like using a tank
to kill a fly :-D
On 3/31/2005 11:18:31 AM, Bosky, Dave ([EMAIL PROTECTED]) wrote:
--_=_NextPart_001_01C53626.6CCF76C0
Content-Type: text/plain
I'm looking for a script that would require a user to change
On Thu, 31 Mar 2005 14:18:31 -0500, Bosky, Dave [EMAIL PROTECTED] wrote:
I'm looking for a script that would require a user to change their password
every 30 days. Does anyone use a script that has functionality similar to
what I'm looking for?
Thanks,
Dave
I got do it so using a
Richard Lynch [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
Does anyone know how to change the style of password boxes so when the
characters are entered an asterisk appears rather that a smal circle?
Or is this just determed by the OS and uncangable with CSS or Javascript
Does anyone know how to change the style of password boxes so when the
characters are entered an asterisk appears rather that a smal circle?
Or is this just determed by the OS and uncangable with CSS or Javascript of
PHP?
R.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe,
On 14 Mar 2005 Ross Hulford wrote:
Does anyone know how to change the style of password boxes so when
the characters are entered an asterisk appears rather that a smal
circle?
It is determined by the browser and OS. I presume you are talking
about Windows XP, which is where I see that
On Mon, 14 Mar 2005 08:37:04 -0500, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
On 14 Mar 2005 Ross Hulford wrote:
Does anyone know how to change the style of password boxes so when
the characters are entered an asterisk appears rather that a smal
circle?
It is determined by the browser
Dotan Cohen wrote:
On Mon, 14 Mar 2005 08:37:04 -0500, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
On 14 Mar 2005 Ross Hulford wrote:
Does anyone know how to change the style of password boxes so when
the characters are entered an asterisk appears rather that a smal
circle?
It is determined by the
On 14 Mar 2005 Dotan Cohen wrote:
change
input type='text' name='name'/
To:
input type='password' name='name'
This does not address the question. The OP saw small dots in the
password display, he wanted asterisks. That is not because he was
using type='text' but because he was already
Does anyone know how to change the style of password boxes so when the
characters are entered an asterisk appears rather that a smal circle?
Or is this just determed by the OS and uncangable with CSS or Javascript
of
PHP?
They are certainly NOT changeable with PHP.
I doubt that JavaScript
On Mon, 14 Mar 2005 16:25:32 +0100, Jochem Maas [EMAIL PROTECTED] wrote:
yeah ... but next time read the question before you answer ;-)
the guy was wondering how to change which character was used as
the mask in password fields - normally its an asterisk, if
you use WinXP with the std.
Dotan Cohen wrote:
On Mon, 14 Mar 2005 16:25:32 +0100, Jochem Maas [EMAIL PROTECTED] wrote:
yeah ... but next time read the question before you answer ;-)
the guy was wondering how to change which character was used as
the mask in password fields - normally its an asterisk, if
you use WinXP with
OK.
I changed to hashed passwords in now they are case sensitive.
Thanks.
-Will
Richard Lynch [EMAIL PROTECTED] kirjoitti
viestissä:[EMAIL PROTECTED]
William Stokes wrote:
I got my little user authentication to work but now I would like to know
how
to make and check the (upper/lower) case
Hello,
I got my little user authentication to work but now I would like to know how
to make and check the (upper/lower) case in password. To put it simple. I
want users password to be case sensitive.
The authentication checks for returned number of rows from DB. If there is
one matching row
William Stokes wrote:
Hello,
I got my little user authentication to work but now I would like to know how
to make and check the (upper/lower) case in password. To put it simple. I
want users password to be case sensitive.
The authentication checks for returned number of rows from DB. If there
William Stokes wrote:
I got my little user authentication to work but now I would like to know
how
to make and check the (upper/lower) case in password. To put it simple. I
want users password to be case sensitive.
The default compile settings for MySQL are case-insensitive.
Usually, one
Mailit, LLC a écrit :
$userName = $_POST[userName];
$passw= $_POST[passw];
(...)
$cmd = SELECT * FROM theTable
. WHERE userName='$userName' ;
$res = mysql_query( $cmd ) or die( Password search failed. );
Without validating userName in $_POST, that code is vulnerable
to
---BeginMessage---
Here is the setup that I have used.
Please, adapt to your needs.
Table 'theTable' is supposed to contain columns fname, mname, lname
and ePass (encrypted password). The crypt() function produces a password
that
cannot be decrypted and really works well.
Of course, you need to
I am experimenting on my site and I want to make it password protected like
www.realsolution.com.
If any one enters correct user name and password, only then they will be
able to enter into my site.
How can I do that in PHP?
Any ideas? Thanks a ton in advance.
--
PHP General Mailing List
On Wed, 2005-02-16 at 21:31, Kevin Javia wrote:
I am experimenting on my site and I want to make it password protected like
www.realsolution.com.
If any one enters correct user name and password, only then they will be
able to enter into my site.
How can I do that in PHP?
Any ideas?
Kevin Javia wrote:
I am experimenting on my site and I want to make it password protected like
www.realsolution.com.
http://www.zend.com/zend/tut/authentication.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Kevin,
I'm having some issues with my email client right now so I'm sorry if
you've already found the answer. There is a way for PHP to do this
without the need to modify your web server's configuration or bothering
with .htaccess/ .htpasswd files by simply modifying the http headers
that your
Concerning Auth
How to set username and password in the mysql table 'auth'.
Nothing has resulted from direct entry into the table.
Vlad Alivanov
Thanks for the input, but unfortunately I have no idea how to do that, though
I do have a MySQL server for my site. I'm still trying to learn basic PHP, I
haven't moved on to PHP and MySQL connections and stuff yet.
-Andrew
Hi,
Thanks for the input, but unfortunately I have no idea how to do that,
though
I do have a MySQL server for my site. I'm still trying to learn basic PHP,
I
haven't moved on to PHP and MySQL connections and stuff yet.
If you're talking about authentication, there are two methods.
And after that - go and try to find out a little on your own - contrary
to a common misconception, it's not the sole purpose of members of this
list to write all your code for you.
The old favourites RTFM and STFW would serve you well here - there are
thousands of PHP tutorials that will tell
[snip]
And here is the action page, testing2.php.
if ($_POST['user'] == 'Andrew') ($_POST['pass'] == 'pass') {
echo Welcome, Andrew.; }
And (shocker!) I got a blank page. So I turned out display errors and got
this:
Parse error: syntax error, unexpected T_BOOLEAN_AND in
Burhan Khalid wrote:
[snip]
And here is the action page, testing2.php.
if ($_POST['user'] == 'Andrew') ($_POST['pass'] == 'pass') {
echo Welcome, Andrew.; }
And (shocker!) I got a blank page. So I turned out display errors and
got this:
Parse error: syntax error, unexpected T_BOOLEAN_AND in
Hello,
I'm trying to password protect a page with PHP, using forms and $_POST data
and all that stuff. However, I'm running into problems setting it so that if
the POST is equal to a certain thing, it'll do this or that (using if...else
commands) and also problems with just getting blank pages
* Thus wrote [EMAIL PROTECTED]:
This page shows up ok, with the form generating just fine. The problem is
when I get to the action page, testing2.php. Here is that:
?php
if ($_POST['user']) == me {
echo it's me!;
} else {
echo not me;
?
You have a parse error, no ending }
On Sunday 19 September 2004 21:47, [EMAIL PROTECTED] wrote:
I'm trying to password protect a page with PHP, using forms and $_POST data
and all that stuff.
I strongly suggest you search out a few tutorials on this subject.
google php authentication tutorial
would be a good start.
--
I appreciate the help, but unfortunately it still doesn't work. I changed
testing2.php, the action page to do this:
?php
if ($_POST['user']) == me {
echo Andrew;
} else {
echo not me;
}
?
I still get a blank page. What's more I turned on Display Errors and
restarted the server, but
[EMAIL PROTECTED] wrote:
I appreciate the help, but unfortunately it still doesn't work. I changed
testing2.php, the action page to do this:
?php
if ($_POST['user']) == me {
echo Andrew;
} else {
echo not me;
}
?
I still get a blank page. What's more I turned on Display Errors and
You were right, my display_error function was turned off. I turned it on and
get this:
Parse error: syntax error, unexpected T_IS_EQUAL in c:\TSW\pages\testing2.php
on line 3
So it isn't working. How do I get to let me make comparisons between the post
data and something else? I figure if I
[EMAIL PROTECTED] wrote:
You were right, my display_error function was turned off. I turned it on and
get this:
Parse error: syntax error, unexpected T_IS_EQUAL in c:\TSW\pages\testing2.php
on line 3
So it isn't working. How do I get to let me make comparisons between the post
data and
Try this. Add it to the very beginning.
?php
if(!isset($PHP_AUTH_USER)){
header( WWW-Authenticate: Basic realm=\Are you allowed?\);
header( HTTP/1.0 401 Unauthorized);
echo Consult your teacher to have a valid login ID and password to access this
page!\n;
exit;
}else{
if (
(
type=text name=userbr
form method=post action=http://www.thesonicworld.net/pages/testing2.php;
Password: input type=text name=pass
br
centerinput type=submit value=Log In/center
/form
_HTML_;
?
And here is the action page, testing2.php.
if ($_POST['user'] == 'Andrew') ($_POST['pass'] == 'pass
/testing2.php;
Username: input type=text name=userbr
form method=post action=http://www.thesonicworld.net/pages/testing2.php;
Password: input type=text name=pass
br
centerinput type=submit value=Log In/center
/form
_HTML_;
?
And here is the action page, testing2.php.
if ($_POST['user
You could use Turck to convert the file to byte code. Not exactly
state of the art security as Turck does not have any encryption
itself, but definately a better option than plain text.
- Sid
On Fri, 2 Jul 2004 22:32:24 -0400 (EDT), Michal Migurski
[EMAIL PROTECTED] wrote:
I realize the key
I have been looking at a number of scripts and they all seem to use
something like a config.php file where there is a var called something like
$dbpasswd but the password is still clear text. While I understand that the
file only sets vars and it can be put outside the document root so that
[snip]
But has anyone done something like encypting that password rather than
leaving it in plan text.
[/snip]
Yes.
Happy Independence Day!
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Anzak Wolf wrote:
Call me paranoid but I think I would rather play the little
bit in overhead to decypt the password to give myself a slightly safer
feel about my database password.
Paranoid.
And where do you plan on keeping the key to decrypt the password? In
another file? How are you going to
I realize the key needs to be stored somewhere which is part of the problem
of how to make it a bit more secure. I just don't feel safe if a password
in a flat file in clear text. Ideally the database should support something
like an ssh style public/private Key auth where the private Key is
[snip]
I realize the key needs to be stored somewhere which is part of the
problem of how to make it a bit more secure. I just don't feel safe if
a password in a flat file in clear text. Ideally the database should
support something
like an ssh style public/private Key auth where the private
gt;[snip]
gt;I realize the key needs to be stored somewhere which is part of the
gt;problem of how to make it a bit more secure. I just don't feel safe if
gt;a password in a flat file in clear text. Ideally the database should
gt;support something
gt;like an ssh style public/private Key auth
-
From: Anzak Wolf [mailto:[EMAIL PROTECTED]
Sent: Friday, July 02, 2004 1:24 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Password encyption
Yes I have looked though since I'm not 100% sure what I'm looking for
it is
hard to come up with a solid answer
-
From: Anzak Wolf [mailto:[EMAIL PROTECTED]
Sent: Friday, July 02, 2004 1:24 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Password encyption
Yes I have looked though since I'm not 100% sure what I'm looking for
it is
hard to come up with a solid
gt;So host your own server. That way nobody but you has access to it.
gt;Then you could store the password wherever you want, unecrypted, and it
gt;wouldn't matter. If you're running an application that's that security
gt;conscious, you shouldn't be using a shared server anyway.
I do run my own
Well that's a whole different thing, then.
-Original Message-
From: Anzak Wolf [mailto:[EMAIL PROTECTED]
Sent: Friday, July 02, 2004 1:40 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Password encyption
I do run my own server but I know for a fact that even if I
1 - 100 of 177 matches
Mail list logo
