stevehossy Posted March 18, 2009 Share Posted March 18, 2009 would md5 decryption be much better than if i set up my own? What ive done is string replace, and for example the letter a turns into f42ihnfnb or whatever.. Is there anyway someone can find out the combination, i mean the only way they can find out what replaces the letters is by hacking cpanel, so md5 wont help anyway. Is this safe or should i use md5. Main reason why i want this is for pass resend, you cannot decrpyt md5... Quote Link to comment Share on other sites More sharing options...
Psycho Posted March 18, 2009 Share Posted March 18, 2009 Why not just send out a new temp password instead of using an unsecure method of storing the data. It's just good practice. Any site can get infiltrated. That woudl include the database and the PHP files that are used to encrypt/decrypt data in your database. Because many users use the same usernames, passwords, etc. on several sites if someone can get the info from one site they can try that info on other sites such as banking. It's just good practice, IMHO, to use an undecryptable method using a good salt. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.