Whilst reviewing my penetration testing I have noticed that both the
md5 and sha1 hashing algorithms are now considered less secure than
previously thought. Migration to sha256 is encouraged:
http://www.owasp.org/index.php/Cryptography#Algorithm_Selection
Then I found the comment below from:
htt
Could I recommend a more secure approach:
1) using two hashes to protect the data (in case the database is
compromised they are both one-way hashes, and using two protects
against collision attacks whereby a different password string
generates the same hash as the original password)
2) escaping use
Hello all,
Having a problem with the behaviour of switch when mixing variable types. Eg
this code interprets $page as 0 in the switch. It's not a problem to
alter 'review' to a number, just less elegant. Can anybody shed a
little light on mixed variable types in switch statements please?
While
