Re: [PHP] encryption

Thu, 06 Dec 2001 07:39:58 -0800 

I don't know if this was mentioned but you can do it all in MySQL with the
password() function.
Ex:
INSERT INTO users (username,password) VALUES ('tyler',PASSWORD('testpass'));

Also:
SELECT * FROM users WHERE username='$username' AND
password=PASSWORD('testpass');

Good luck,
Tyler Longren

----- Original Message -----
From: "Valter Santos" <[EMAIL PROTECTED]>
To: "Brian Clark" <[EMAIL PROTECTED]>; "PHP is not a drug."
<[EMAIL PROTECTED]>
Sent: Thursday, December 06, 2001 9:34 AM
Subject: Re: [PHP] encryption


> I agree... MD5 is the best way to store passwords...
> you only store the md5 hash of the actual password, then when the
> user logins you have to compare the stored hash with the md5 hash
> of password the user uses to login!
>
>
> cheers,
>
> Valter Santos
>
>
>
>
>
> ----- Original Message -----
> From: "Brian Clark" <[EMAIL PROTECTED]>
> To: "PHP is not a drug." <[EMAIL PROTECTED]>
> Sent: Thursday, December 06, 2001 2:48 PM
> Subject: Re: [PHP] encryption
>
>
> > * Justin French <[EMAIL PROTECTED]> [Dec 06. 2001 07:33]:
> >
> > > Can someone give me a brief over view of how to encrypt a password and
> > > store it in a MySQL DB, then be able to validate thier plain text
> > > password on login against the encrypted one on the DB?
> >
> > An alternative is to just store an Md5 of the password and not the
> > actual password.
> >
> > <http://www.php.net/md5>
> >
> > --
> >  -Brian Clark
> >
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> > To contact the list administrators, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> To contact the list administrators, e-mail: [EMAIL PROTECTED]
>
>


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to