DeveloperBarn

Hey fellas!
I need to save user's password in a table.
So whats the best way to save it in?

RR advised me to use MD5, but i searched and found this article which says it can be hacked easily.
Cracking MySQL's MD5() function ... within seconds

Any ideas/advises??

VS.NET 2005

Micky

Hey Micky,
I always used to use md5(), haven't done much new php programming for a while now though so am not up to scratch with what is the best current method...however have you looked at the PHP: md5 - Manual page? There are some threads there talking about greater security...

Also...what are you securing access too? and how likely are people to want to crack it..that is something in my mind you have to weigh up with the time/money spent on securing it...

Just a thought, Let us know if you find something better

Graham.

__________________
“There are two theories to argueing with women. Neither of them work! ” - Unknown

thanx RF, i'll have a look

no worries, although just reread your post and you say VS.Net2005...sorry I presumed you were using PHP! Not sure my link will help afterall. Oh I do try!

lol
well the link might help, irrespective of development platrofm

Guess the logic should be the same.

Micky,

This all shouldn't be taken with a grain of salt...or perhaps, it should

I use SHA-1 with a password salt for extra security. I would look into going that route.

__________________
jmurrayhead
If you agree with me... click the icon!
If my post solved your problem, click the button in the lower right-hand corner of the post.

If you like it here...throw us a few bones to help support us.

Join our Folding team: DeveloperBarn Folding

J, i searched and found this code!!
can u have a look and see if thats what u mean and if i shud use it

VB.NET Code Sample: Hashing Data

MySql
VS.NET 2005

It's a pretty good example, but not complete with information.

I have a working sample at home that I won't mind sharing with you...just gotta give me about 10 hours :P

10hours...man that is a long drive home