I don't think so, data stored as plain text is almost stored intact in the file system.
Using stupid windows for example, you can easily open mysql file "table.MYD" in the folder database with NotePad, and you can read everything. Which means, everybody without any hacking knowledge can access to user's password and mailbox stored in your site, since he had access to the system folder. And if you have rented server it is recommanded to crypt strategic data. ----- Original Message ----- From: "John W. Holmes" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; "'php'" <[EMAIL PROTECTED]>; "'Ben C.'" <[EMAIL PROTECTED]> Sent: Wednesday, November 13, 2002 2:05 PM Subject: RE: [PHP] Trying to e-mail password > If you want an email password feature, then just store it as plain text. > If someone is able to get access to your database, that means they more > than likely have access to the rest of your box, so your 'secret code' > is worthless. > > ---John Holmes... > > > -----Original Message----- > > From: rija [mailto:rija@;vatu.com] > > Sent: Tuesday, November 12, 2002 9:37 PM > > To: php; Ben C. > > Subject: Re: [PHP] Trying to e-mail password > > > > ENCODE(value, 'secret code') > > DECODE(field name, 'secret code') > > > > to record > > " ... VALUES ( ... blahblah, ENCODE('$passord', 'secret code', ... > BLAH > > BHAL") ; > > > > and to read the value > > do like this > > MYSQL_QUERY("SELECT DECODE(password, 'secret code') as password, id, > BLAH > > BLAH > > > > > > ----- Original Message ----- > > From: "Ben C." <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Wednesday, November 13, 2002 12:07 PM > > Subject: Re: [PHP] Trying to e-mail password > > > > > > > Is there not any way to reverse the crypted password before > e-mailing?? > > > > > > If not, how do I use ENCODE / DECODE? > > > > > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
