> -----Original Message-----
> From: Peter Farrell [mailto:[EMAIL PROTECTED]
> Sent: Saturday, April 23, 2005 12:33 PM
> To: CF-Talk
> Subject: RE: CrystalTech Users Beware
>
> Hashing your app name isn't going to protect you from others on a shared
> server from looking in on you:
It not hashing the app name - it's hashing the app DIRECTORY to get the name
and then adding a secrete value to the end ("salt").
Using a hash of the directory ensures to a great degree of certainty that
the name won't be accidentally used again. Adding the salt attempts to
ensure that nobody could guess the name easily just by knowing your
application path.
Jim Davis
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Logware (www.logware.us): a new and convenient web-based time tracking
application. Start tracking and documenting hours spent on a project or with a
client with Logware today. Try it for free with a 15 day trial account.
http://www.houseoffusion.com/banners/view.cfm?bannerid=67
Message: http://www.houseoffusion.com/lists.cfm/link=i:4:204112
Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4
Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4
Unsubscribe:
http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
