On Thursday 16 August 2001 12:42, Martin Bassie wrote:
> This is a multi-part message in MIME format.
>
> ----------part3b7c1428c5479
> Content-Type: text/plain; charset=us-ascii
> Content-Transfer-Encoding: 7bit
>
> Hi,
>
> We're working on system where credit card numbers need to be stored in an
> encrypted form in a database (one-way encryption is preferred, in this
case).
> In order to do that, we use the MySQL ENCRYPT() function. From what I can
> reason, every encrypted DB string should be unique.
>
> However, even with only around 50 numbers in this table, there are already a
> large number of duplicates. Now, I have already browsed through some of the
> documentation, and it is mentioned that this function ignores all but the
> first 8 characters in the string to be encrypted (which in the case of CC
> numbers would result in not much more than an encryption of a CC company ID
> for most CCs).
>
> I'm trying to get this to work on Red Hat (I think it's 6.4), MySQL version
> 3.23.37. Is there an updated library I need to get from somewhere to get
thos
> to work properly?
>
> As an alternate, would using an MD5 checksum for these numbers be a better
> solution, in other words, could I count on these checksums being unique for
> these #'s?
MD5() is a much better solution for one-way encryption - harder to crack and
does not have the 8 character limit.
--
MySQL Development Team
For technical support contracts, visit https://order.mysql.com/
__ ___ ___ ____ __
/ |/ /_ __/ __/ __ \/ / Sasha Pachev <[EMAIL PROTECTED]>
/ /|_/ / // /\ \/ /_/ / /__ MySQL AB, http://www.mysql.com/
/_/ /_/\_, /___/\___\_\___/ Provo, Utah, USA
<___/
---------------------------------------------------------------------
Before posting, please check:
http://www.mysql.com/manual.php (the manual)
http://lists.mysql.com/ (the list archive)
To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
