Depends on your security requirements. I do a one-way hash when the password
is created, and email Users temporary passwords when they forget theirs. No
one can look-up a password, not even the DBA.
-----Original Message-----
From: Shahzad.Butt [mailto:[EMAIL PROTECTED]
Sent: Tuesday, December 16, 2003 5:01 AM
To: CF-Talk
Subject: Password encryption
Hi
I am storing user name and password in Access DB and running a query to
match the combination when user attempts to login. Authorised users can
do everything with the DB. Whats the best way to make it secure?
encrypting passwords stored in DB? or some other way......
Thanks
Shaz
[Todays Threads]
[This Message]
[Subscription]
[Fast Unsubscribe]
[User Settings]
- Password encryption Shahzad.Butt
- RE: Password encryption Andy Ousterhout
- RE: Password encryption John Beynon
- RE: Password encryption d.a.collie
- Password Encryption Haggerty, Mike
- Re: Password Encryption Matt Robertson
- RE: Password Encryption Peter Tilbrook