cob05

I'm looking to do something like that for football (NFL), you don't happen to have some sample code you could share do you?

Agreed, hashing and salts have to go hand-in-hand. Any discussion of storing hashed passwords without including an explanation of salting is unwise. Salts add much to the security of the hashed passes in terms of defeating rainbow tables in the event that the DB is compromised. There were some high profile hacks recently where large numbers of username:password combos were released that would have been effectively rendered null if salts were used with the hashed passes, saving the large companies involved a lot of embarrassment and the affected users a lot of frustration. It is just too much effort for the attacker to recompile his rainbow tables for (pseudo)randomly salted hashes to attack the DB on a large scale. Salts are obviously somewhat less effective if there is a single or small number of targets that the attacker is focusing on (admin user, etc...) and in these cases the use of strong passwords is essential. That being said, the above is a very nice starter guide to hashing passwords Stefany93. Believe it or not, I am still seeing newbie guides that were created recently by others recommending the use of md5 as the preferred hashing method! Include information on salting and it will be a very good guide!