char(32)
-Novak
-----Original Message-----
From: Barney Boisvert [mailto:[EMAIL PROTECTED]
Sent: Monday, December 15, 2003 10:51 AM
To: CF-Talk
Subject: RE: Scrambling Data
Use hash() on the password before your insert (you'll need a varchar(32)
for
the result), and then when you select, use hash() again. You'll never
be
able to get the original password out, you'll only be able to check a
password and see if it's the same. That means you can't tell a user
what
their forgotten password is, you have to reasign it, but that's
generally a
pretty brainless excerise.
Cheers,
barneyb
> -----Original Message-----
> From: C. Hatton Humphrey [mailto:[EMAIL PROTECTED]
> Sent: Monday, December 15, 2003 10:43 AM
> To: CF-Talk
> Subject: Scrambling Data
>
> I am working out a database schema for an intranet and need
> to figure out
> some way to mask the password field in the users table from
> simple SELECT
> grabs.
>
> I know that CF has some built-in encryption tools but I can't
> remember what
> they are. Can someone point me in the right direction?
>
> At this moment I'm just trying to figure out what to store in
> the database.
> I know I'll need a field for the password but do I need to
> also provide a
> field for a key or key pair?
>
> Thanks!
> Hatton
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.548 / Virus Database: 341 - Release Date: 12/5/2003
>
>
>
_____
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
