On Tue, Nov 2, 2010 at 13:05, Ben Miller wrote:
> I need to access and read the files in a password protected directory with a
> PHP script using the readdir function. I'm already making users login to a
> secure area, so I don't want to make them enter a password again to access
> the files - is
On Tue, Nov 2, 2010 at 1:05 PM, Ben Miller wrote:
> I need to access and read the files in a password protected directory with a
> PHP script using the readdir function. I'm already making users login to a
> secure area, so I don't want to make them enter a password again to access
> the files -
I need to access and read the files in a password protected directory with a
PHP script using the readdir function. I'm already making users login to a
secure area, so I don't want to make them enter a password again to access
the files - is there a way to include the password with the readdir/ope
On Thu, Mar 12, 2009 at 16:04, Rodrigo Escares
wrote:
> prueba con trim() :
> $pass=trim($_POST[PASSSWORD]);
> if (empty($pass))
> {
> $GERROR="TRUE";
> }
Incorrecto, Rodrigo. Tambien, utilice por favor solamente el
ingles en esta lista --- usted puede encontrar la lista de usuario
espanola
prueba con trim() :
$pass=trim($_POST[PASSSWORD]);
if (empty($pass))
{
$GERROR="TRUE";
}
Atte.
Rodrigo
(09) 7 7996571
On Thu, Mar 12, 2009 at 4:05 PM, Jason Todd Slack-Moehrle <
mailingli...@mailnewsrss.com> wrote:
> Hi All,
>
> I have an input field with type="password".
>
> I am trying to
haliphax wrote:
On Thu, Mar 12, 2009 at 2:39 PM, Jason Todd Slack-Moehrle
wrote:
if (empty($_POST[PASSSWORD]))
{ $GERROR="TRUE";}
If that's a direct copy/paste from your actual code, there is an extra
S in PASSWORD. Also, you should enclose the array key in quotes:
if (empty($_
On Thu, Mar 12, 2009 at 3:39 PM, Jason Todd Slack-Moehrle
wrote:
>>>
>>> if (empty($_POST[PASSSWORD]))
>>> { $GERROR="TRUE";}
>>>
>>
>> If that's a direct copy/paste from your actual code, there is an extra
>> S in PASSWORD. Also, you should enclose the array key in quotes:
>>
>> if (empty($_POST[
Jochem Maas wrote:
Afan Pasalic schreef:
Andrew Ballard wrote:
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
wrote:
Hi All,
I have an input field with type="password".
I am trying to do some error checking to see if the user puts a value in
after they submit t
On Thu, Mar 12, 2009 at 2:39 PM, Jason Todd Slack-Moehrle
wrote:
>>>
>>> if (empty($_POST[PASSSWORD]))
>>> { $GERROR="TRUE";}
>>>
>>
>> If that's a direct copy/paste from your actual code, there is an extra
>> S in PASSWORD. Also, you should enclose the array key in quotes:
>>
>> if (empty($_POST[
Afan Pasalic schreef:
>
>
> Andrew Ballard wrote:
>> On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
>> wrote:
>>
>>> Hi All,
>>>
>>> I have an input field with type="password".
>>>
>>> I am trying to do some error checking to see if the user puts a value in
>>> after they submit the
if (empty($_POST[PASSSWORD]))
{ $GERROR="TRUE";}
If that's a direct copy/paste from your actual code, there is an extra
S in PASSWORD. Also, you should enclose the array key in quotes:
if (empty($_POST['PASSWORD']))
{ $GERROR='TRUE'; }
It is official I am a DOPE! Thank you, yes, I did not s
Andrew Ballard wrote:
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
wrote:
Hi All,
I have an input field with type="password".
I am trying to do some error checking to see if the user puts a value in
after they submit the form (i.e not left it blank)
Here is what I have:
on
On Thu, Mar 12, 2009 at 15:05, Jason Todd Slack-Moehrle
wrote:
>
> if (empty($_POST[PASSSWORD]))
> { $GERROR="TRUE";}
[snip!]
> What am I doing wrong?
Spelling.
"Password" only has two S's.
--
daniel.br...@parasane.net || danbr...@php.net
http://www.parasane.net/ || http://www.pilot
On Thu, Mar 12, 2009 at 3:05 PM, Jason Todd Slack-Moehrle
wrote:
> Hi All,
>
> I have an input field with type="password".
>
> I am trying to do some error checking to see if the user puts a value in
> after they submit the form (i.e not left it blank)
>
> Here is what I have:
>
> on form:
> Passw
Hi All,
I have an input field with type="password".
I am trying to do some error checking to see if the user puts a value
in after they submit the form (i.e not left it blank)
Here is what I have:
on form:
Password: size="15">
In PHP error checking:
if (empty($_POST[PASSSWORD]))
{ $GERRO
I forgot about the mail thing...
Begin forwarded message:
From: Philip Thompson <[EMAIL PROTECTED]>
Date: June 17, 2008 6:52:15 PM CDT
To: PHP-General List
Subject: Re: [PHP] Password Protecting a page and email notification
On Jun 17, 2008, at 5:33 PM, R.C. wrote:
I'm going to
On Jun 17, 2008, at 5:33 PM, R.C. wrote:
I'm going to ask you PHP gurus if someone can give me a hand in
trying to
get this resolved. I'm fairly new to PHP and learning as I go.
I've got two page "login.php" and video.php. Video.php is supposed
to be
protected i.e. if someone clicks on th
I'm going to ask you PHP gurus if someone can give me a hand in trying to
get this resolved. I'm fairly new to PHP and learning as I go.
I've got two page "login.php" and video.php. Video.php is supposed to be
protected i.e. if someone clicks on the direct link or brings up the page in
a browser
Hey folks,
I just wanna say thanks for whole help you've had give to me. I did
solve my problem with clues you give to me. Now, I have a server exclusively
to my project and I enabled the system command and zip command works fine.
Thanks again,
Petrus Bastos.
On Wed, 2008-01-23 at 00:40 -0500, Nathan Nobbe wrote:
> alright, so you guys have responded and im really appreciative.
> you have me thinking now..
> so what are the real issues here?
>
>1. portability
>2. security (obviously)
>
> im wondering now if crypt() is really even so practical
alright, so you guys have responded and im really appreciative.
you have me thinking now..
so what are the real issues here?
1. portability
2. security (obviously)
im wondering now if crypt() is really even so practical. especially
considering the deal where only 2 characters are prepended
Richard Lynch wrote:
On Tue, January 22, 2008 7:43 pm, Chris wrote:
Richard Lynch wrote:
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
I always make sure that I use a site specific salt which is just
appended on the user supplied value. I started doing that when I
read
that people had
On Tue, January 22, 2008 7:43 pm, Chris wrote:
> Richard Lynch wrote:
>> On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
>>> I always make sure that I use a site specific salt which is just
>>> appended on the user supplied value. I started doing that when I
>>> read
>>> that people had cre
Richard Lynch wrote:
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
I always make sure that I use a site specific salt which is just
appended on the user supplied value. I started doing that when I read
that people had created huge databases of hashed values that they can
just search on.
On Sat, January 19, 2008 8:24 pm, Eric Butera wrote:
> I always make sure that I use a site specific salt which is just
> appended on the user supplied value. I started doing that when I read
> that people had created huge databases of hashed values that they can
> just search on. At least this w
On Sat, January 19, 2008 2:11 pm, Nathan Nobbe wrote:
> http://www.php.net/manual/en/function.crypt.php
> has a second parameter, $salt, which, if not supplied will be
> automatically
> generated and presumably become a prefix or suffix of the returned
> string.
Or, in some algorithms, gets buried
Nathan Nobbe wrote:
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not su
On Mon, 2008-01-21 at 14:37 -0500, Mike Potter wrote:
>
> You should have said "yes" and quit while you thought you were ahead.
I'm not trying to get "ahead"... I didn't know I was competing. Are we
competing? I thought I was just answering posts.
> > that was me saying that there is certainly a
My apologies Robert, Gmail sucks. I'm bouncing this back to the list, where it
belonged in the first place. Feel free to make corrections if I've
mischaracterized
what you wrote. Good luck with that, btw, but don't expect me to engage.
Robert Cummings wrote:
>>> And THAT does remind me of my MUD
On Sat, 2008-01-19 at 23:17 -0500, Nathan Nobbe wrote:
> thanks for the great responses guys.
> i guess what im really getting at though is, if crypt() will embed
> a salt in the value it returns automatically, is there any benefit to
> creating a salt to pass to the second argument and storing tha
thanks for the great responses guys.
i guess what im really getting at though is, if crypt() will embed
a salt in the value it returns automatically, is there any benefit to
creating a salt to pass to the second argument and storing that
as well?
conceivably, passwords already have a salt using the
> -Original Message-
> From: Eric Butera [mailto:[EMAIL PROTECTED]
> Sent: Sunday, January 20, 2008 12:24 AM
> To: Jochem Maas
> Cc: Nathan Nobbe; PHP General List
> Subject: Re: [PHP] password hashing and crypt()
>
> On Jan 19, 2008 8:02 PM, Jochem Maas &
On Jan 19, 2008 8:02 PM, Jochem Maas <[EMAIL PROTECTED]> wrote:
> Nathan Nobbe schreef:
> > hi all,
> >
> > recently ive been debating a bit about the use of the crypt() function and
> > the best practice thereof, im hoping you can help to clarify this for me.
> >
> > so, the crypt function
> > htt
Nathan Nobbe schreef:
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not
hi all,
recently ive been debating a bit about the use of the crypt() function and
the best practice thereof, im hoping you can help to clarify this for me.
so, the crypt function
http://www.php.net/manual/en/function.crypt.php
has a second parameter, $salt, which, if not supplied will be automat
visit http://www.softswot.com/Form1Password.php
On 3/21/07, Kevin <[EMAIL PROTECTED]> wrote:
Hello Everyone!
I am new to PHP but I am hoping you guys can help me. I would like
to have my users go to a page that looks like
http://f4.zittle.com/admin, or even just a drop down window or
somet
and password. Depending on
> the username, and of course assuming the password is correct, they
> will be forwarded to a certain page or directory. I think I need to
> use a DB but I am not sure anything more. Sorry it is such a simple
> question but hopefully all of you can help! Thanks in
Hello Everyone!
I am new to PHP but I am hoping you guys can help me. I would like
to have my users go to a page that looks like
http://f4.zittle.com/admin, or even just a drop down window or
something whre they can enter a username and password. Depending on
the username, and of course assum
Jason Karns wrote:
> I'm trying to find a way to password protect a directory. I currently have
> an authentication and authorization system in place for pages in my
> directory. I'd prefer to use my existing system somehow (as it includes
> OpenID authentication) as opposed to using htaccess and
Well, you could try to edit each PHP file and add a piece of login code at
top, but if the directory will also contain images (which need a password to
access), it would not be possible that way.
Tijnema
On 3/4/07, Jason Karns <[EMAIL PROTECTED]> wrote:
I'm trying to find a way to password pr
I'm trying to find a way to password protect a directory. I currently have
an authentication and authorization system in place for pages in my
directory. I'd prefer to use my existing system somehow (as it includes
OpenID authentication) as opposed to using htaccess and HTTP Auth. The only
idea
> -Original Message-
> From: Helder Lopes [mailto:[EMAIL PROTECTED]
> Sent: Thursday, February 15, 2007 5:32 AM
> To: php-general@lists.php.net
> Subject: [PHP]Password and FTP Folder
>
> Hi people
>
> hi have a problem
>
> i need a script for make a ft
Hi people
hi have a problem
i need a script for make a ftp folder that have a password for enter
Have anyway to do this??
/mrpostiga
Dave wrote:
Hello,
I'm using php and apache2 on a freebsd box. I know about .htaccess
that the web server can provide, but i'm looking for something php can
do, i want it to pop up a page when a user requests certain files,
asking for a username and password.
http://www.php.net/features.h
This is impossible with only PHP. You might need a combination of PHP
and AJAX [Javascript].
On 1/11/07, Dave <[EMAIL PROTECTED]> wrote:
Hello,
I'm using php and apache2 on a freebsd box. I know about .htaccess that
the web server can provide, but i'm looking for something php can do, i want
Hello,
I'm using php and apache2 on a freebsd box. I know about .htaccess that
the web server can provide, but i'm looking for something php can do, i want
it to pop up a page when a user requests certain files, asking for a
username and password. If those are valid the user is taken to a pa
Hi,
Thank you every one for responding to my mail and
giving valuable comments and suggestions for it.
Thanx,
..Deeps..
--- Deep <[EMAIL PROTECTED]> wrote:
>
> Hi evryone,
>
> I want to implement a site where i would like to
> encrypt the password of the users and store it into
> mysql
On Tuesday 10 May 2005 16:05, Deep wrote:
> Hi evryone,
>
> I want to implement a site where i would like to
> encrypt the password of the users and store it into
> mysql
> database. My question is that , In case if the user
> has forgotten the password how can he retrieve the
> password(which is
I want to implement a site where i would like to
encrypt the password of the users and store it into
mysql
database. My question is that , In case if the user
has forgotten the password how can he retrieve the
password(which is already encrypted and stored...the
user should be able to get the decr
Hi
You are doing the right thing storing passwords encrypted!
You may use any of the one way digest like secure hash 1 (sha1) or md5 or a
combination to generate a hash.
In case your user forgets his password, there is no way to reconstruct it.
You need to provide an interface where the user
Hi evryone,
I want to implement a site where i would like to
encrypt the password of the users and store it into
mysql
database. My question is that , In case if the user
has forgotten the password how can he retrieve the
password(which is already encrypted and stored...the
user should be able
im sure it cant be that hard to write:
when user logs in check the last date their password was set.
if > 30 days then prompt to connect and dont allow user to do anything
else until password has been changed and new expiry date is set (which
will now be less than 30 days)
use an include for it
On Thu, 31 Mar 2005 14:18:31 -0500, Bosky, Dave <[EMAIL PROTECTED]> wrote:
> I'm looking for a script that would require a user to change their password
> every 30 days. Does anyone use a script that has functionality similar to
> what I'm looking for?
>
> Thanks,
>
> Dave
>
I got do it so using
Theres instant2c pro at securecents.com, but that might be like using a tank
to kill a fly :-D
On 3/31/2005 11:18:31 AM, Bosky, Dave ([EMAIL PROTECTED]) wrote:
> --_=_NextPart_001_01C53626.6CCF76C0
>
> Content-Type: text/plain
>
>
>
> I'm looking for a script that would require a user to ch
I'm looking for a script that would require a user to change their password
every 30 days. Does anyone use a script that has functionality similar to
what I'm looking for?
Thanks,
Dave
HTC Disclaimer: The information contained in this message may be privileged
and confidential and prot
"Richard Lynch" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> > Does anyone know how to change the style of password boxes so when the
> > characters are entered an asterisk appears rather that a smal circle?
> >
> > Or is this just determed by the OS and uncangable with CSS or Jav
Dotan Cohen wrote:
On Mon, 14 Mar 2005 16:25:32 +0100, Jochem Maas <[EMAIL PROTECTED]> wrote:
yeah ... but next time read the question before you answer ;-)
the guy was wondering how to change which character was used as
the mask in password fields - normally its an asterisk, if
you use WinXP with
On Mon, 14 Mar 2005 16:25:32 +0100, Jochem Maas <[EMAIL PROTECTED]> wrote:
>
> yeah ... but next time read the question before you answer ;-)
> the guy was wondering how to change which character was used as
> the mask in password fields - normally its an asterisk, if
> you use WinXP with the std.
> Does anyone know how to change the style of password boxes so when the
> characters are entered an asterisk appears rather that a smal circle?
>
> Or is this just determed by the OS and uncangable with CSS or Javascript
> of
> PHP?
They are certainly NOT changeable with PHP.
I doubt that JavaSc
On 14 Mar 2005 Dotan Cohen wrote:
> change
>
>
> To:
>
This does not address the question. The OP saw small dots in the
password display, he wanted asterisks. That is not because he was
using type='text' but because he was already using type='password' and
the browser had a particular wa
Dotan Cohen wrote:
On Mon, 14 Mar 2005 08:37:04 -0500, [EMAIL PROTECTED]
<[EMAIL PROTECTED]> wrote:
On 14 Mar 2005 Ross Hulford wrote:
Does anyone know how to change the style of password boxes so when
the characters are entered an asterisk appears rather that a smal
circle?
It is determined by th
On Mon, 14 Mar 2005 08:37:04 -0500, [EMAIL PROTECTED]
<[EMAIL PROTECTED]> wrote:
> On 14 Mar 2005 Ross Hulford wrote:
>
> > Does anyone know how to change the style of password boxes so when
> > the characters are entered an asterisk appears rather that a smal
> > circle?
>
> It is determined by
On 14 Mar 2005 Ross Hulford wrote:
> Does anyone know how to change the style of password boxes so when
> the characters are entered an asterisk appears rather that a smal
> circle?
It is determined by the browser and OS. I presume you are talking
about Windows XP, which is where I see that be
Does anyone know how to change the style of password boxes so when the
characters are entered an asterisk appears rather that a smal circle?
Or is this just determed by the OS and uncangable with CSS or Javascript of
PHP?
R.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe,
OK.
I changed to hashed passwords in now they are case sensitive.
Thanks.
-Will
"Richard Lynch" <[EMAIL PROTECTED]> kirjoitti
viestissä:[EMAIL PROTECTED]
> William Stokes wrote:
>> I got my little user authentication to work but now I would like to know
>> how
>> to make and check the (upper/lo
William Stokes wrote:
> I got my little user authentication to work but now I would like to know
> how
> to make and check the (upper/lower) case in password. To put it simple. I
> want users password to be case sensitive.
The default compile settings for MySQL are case-insensitive.
Usually, one
William Stokes wrote:
Hello,
I got my little user authentication to work but now I would like to know how
to make and check the (upper/lower) case in password. To put it simple. I
want users password to be case sensitive.
The authentication checks for returned number of rows from DB. If there is
Hello,
I got my little user authentication to work but now I would like to know how
to make and check the (upper/lower) case in password. To put it simple. I
want users password to be case sensitive.
The authentication checks for returned number of rows from DB. If there is
one matching row th
Mailit, LLC a écrit :
$userName = $_POST[userName];
$passw= $_POST[passw];
(...)
$cmd = "SELECT * FROM theTable "
. "WHERE userName='$userName' ";
$res = mysql_query( $cmd ) or die( "Password search failed." );
Without validating userName in $_POST, that code is vulnerable
--- Begin Message ---
Here is the setup that I have used.
Please, adapt to your needs.
Table 'theTable' is supposed to contain columns fname, mname, lname
and ePass (encrypted password). The crypt() function produces a password
that
cannot be decrypted and really works well.
Of course, you need t
Kevin,
I'm having some issues with my email client right now so I'm sorry if
you've already found the answer. There is a way for PHP to do this
without the need to modify your web server's configuration or bothering
with .htaccess/ .htpasswd files by simply modifying the http headers
that your
Kevin Javia wrote:
I am experimenting on my site and I want to make it password protected like
www.realsolution.com.
http://www.zend.com/zend/tut/authentication.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
On Wed, 2005-02-16 at 21:31, Kevin Javia wrote:
> I am experimenting on my site and I want to make it password protected like
> www.realsolution.com.
>
> If any one enters correct user name and password, only then they will be
> able to enter into my site.
>
> How can I do that in PHP?
>
> Any i
I am experimenting on my site and I want to make it password protected like
www.realsolution.com.
If any one enters correct user name and password, only then they will be
able to enter into my site.
How can I do that in PHP?
Any ideas? Thanks a ton in advance.
--
PHP General Mailing List (http
Concerning Auth
How to set username and password in the mysql table 'auth'.
Nothing has resulted from direct entry into the table.
Vlad Alivanov
And after that - go and try to find out a little on your own - contrary
to a common misconception, it's not the sole purpose of members of this
list to write all your code for you.
The old favourites RTFM and STFW would serve you well here - there are
thousands of PHP tutorials that will tell y
Hi,
> Thanks for the input, but unfortunately I have no idea how to do that,
> though
> I do have a MySQL server for my site. I'm still trying to learn basic PHP,
> I
> haven't moved on to PHP and MySQL connections and stuff yet.
If you're talking about authentication, there are two metho
Thanks for the input, but unfortunately I have no idea how to do that, though
I do have a MySQL server for my site. I'm still trying to learn basic PHP, I
haven't moved on to PHP and MySQL connections and stuff yet.
-Andrew
Burhan Khalid wrote:
[snip]
And here is the action page, testing2.php.
if ($_POST['user'] == 'Andrew') && ($_POST['pass'] == 'pass') {
echo "Welcome, Andrew."; }
And (shocker!) I got a blank page. So I turned out display errors and
got this:
Parse error: syntax error, unexpected T_BOOLEAN_AND in
[snip]
And here is the action page, testing2.php.
if ($_POST['user'] == 'Andrew') && ($_POST['pass'] == 'pass') {
echo "Welcome, Andrew."; }
And (shocker!) I got a blank page. So I turned out display errors and got
this:
Parse error: syntax error, unexpected T_BOOLEAN_AND in
c:\TSW\pages\testing
he form:
>
> echo <<<_HTML_
>
> http://www.thesonicworld.net/pages/testing2.php";>
> Username:
> http://www.thesonicworld.net/pages/testing2.php";>
> Password:
>
>
>
>
> _HTML_;
> ?>
>
> And here is the action page, testing2
net/pages/testing2.php";>
Password:
_HTML_;
?>
And here is the action page, testing2.php.
if ($_POST['user'] == 'Andrew') && ($_POST['pass'] == 'pass') {
echo "Welcome, Andrew."; }
And (shocker!) I got a blank pag
Try this. Add it to the very beginning.
[EMAIL PROTECTED] wrote:
> You were right, my display_error function was turned off. I turned it on and
> get this:
>
> Parse error: syntax error, unexpected T_IS_EQUAL in c:\TSW\pages\testing2.php
> on line 3
>
> So it isn't working. How do I get to let
[EMAIL PROTECTED] wrote:
You were right, my display_error function was turned off. I turned it on and
get this:
Parse error: syntax error, unexpected T_IS_EQUAL in c:\TSW\pages\testing2.php
on line 3
So it isn't working. How do I get to let me make comparisons between the post
data and somethi
You were right, my display_error function was turned off. I turned it on and
get this:
Parse error: syntax error, unexpected T_IS_EQUAL in c:\TSW\pages\testing2.php
on line 3
So it isn't working. How do I get to let me make comparisons between the post
data and something else? I figure if I ca
[EMAIL PROTECTED] wrote:
I appreciate the help, but unfortunately it still doesn't work. I changed
testing2.php, the action page to do this:
if ($_POST['user']) == me {
echo "Andrew";
} else {
echo "not me";
}
?>
I still get a blank page. What's more I turned on Display Errors and
resta
I appreciate the help, but unfortunately it still doesn't work. I changed
testing2.php, the action page to do this:
I still get a blank page. What's more I turned on Display Errors and
restarted the server, but still got no error message.
I don't know what the problem is, maybe there is somet
On Sunday 19 September 2004 21:47, [EMAIL PROTECTED] wrote:
> I'm trying to password protect a page with PHP, using forms and $_POST data
> and all that stuff.
I strongly suggest you search out a few tutorials on this subject.
google > php authentication tutorial
would be a good start.
--
J
* Thus wrote [EMAIL PROTECTED]:
>
> This page shows up ok, with the form generating just fine. The problem is
> when I get to the action page, testing2.php. Here is that:
>
>
> if ($_POST['user']) == me {
>
> echo "it's me!";
>
> } else {
>
> echo "not me";
>
> ?>
You have a parse error,
Hello,
I'm trying to password protect a page with PHP, using forms and $_POST data
and all that stuff. However, I'm running into problems setting it so that if
the POST is equal to a certain thing, it'll do this or that (using if...else
commands) and also problems with just getting blank pages w
You could use Turck to convert the file to byte code. Not exactly
state of the art security as Turck does not have any encryption
itself, but definately a better option than plain text.
- Sid
On Fri, 2 Jul 2004 22:32:24 -0400 (EDT), Michal Migurski
<[EMAIL PROTECTED]> wrote:
> > I realize the ke
> I realize the key needs to be stored somewhere which is part of the
> problem of how to make it a bit more secure. I just don't feel safe if
> a password in a flat file in clear text. Ideally the database should
> support something like an ssh style public/private Key auth where the
> private K
Well that's a whole different thing, then.
-Original Message-
From: Anzak Wolf [mailto:[EMAIL PROTECTED]
Sent: Friday, July 02, 2004 1:40 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Password encyption
I do run my own server but I know for a fact that even
>So host your own server. That way nobody but you has access to it.
>Then you could store the password wherever you want, unecrypted, and it
>wouldn't matter. If you're running an application that's that security
>conscious, you shouldn't be using a shared server anyway.
I do run my own server bu
server anyway.
>
> -Original Message-
> From: Anzak Wolf [mailto:[EMAIL PROTECTED]
> Sent: Friday, July 02, 2004 1:24 PM
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: RE: [PHP] Password encyption
>
>
> Yes I have looked though since
Original Message-
From: Anzak Wolf [mailto:[EMAIL PROTECTED]
Sent: Friday, July 02, 2004 1:24 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Password encyption
Yes I have looked though since I'm not 100% sure what I'm looking for
it is
hard
>[snip]
>I realize the key needs to be stored somewhere which is part of the
>problem of how to make it a bit more secure. I just don't feel safe if
>a password in a flat file in clear text. Ideally the database should
>support something
>like an ssh style public/private Key auth where the privat
[snip]
I realize the key needs to be stored somewhere which is part of the
problem of how to make it a bit more secure. I just don't feel safe if
a password in a flat file in clear text. Ideally the database should
support something
like an ssh style public/private Key auth where the private Key
I realize the key needs to be stored somewhere which is part of the problem
of how to make it a bit more secure. I just don't feel safe if a password
in a flat file in clear text. Ideally the database should support something
like an ssh style public/private Key auth where the private Key is s
Anzak Wolf wrote:
Call me paranoid but I think I would rather play the little
bit in overhead to decypt the password to give myself a slightly safer
feel about my database password.
Paranoid.
And where do you plan on keeping the key to decrypt the password? In
another file? How are you going to
1 - 100 of 194 matches
Mail list logo
