PC Nerd Posted January 11, 2007 Share Posted January 11, 2007 hi guys...came script..i test the empty fields, then the image validation. then the database entry to validate the user inputmy question is...... if my sql goes sometihg like " BLAH BLAH BLAH WHERE UserName = $_POST['User_Name'], `Password` = $_POST['Password']"do i then have to test the actual output from this query ie, if i have managed to retreive that particular record, i shouldnt need to check the data from the database against the user input...just asking for your opinions.... thanks in advance Link to comment https://forums.phpfreaks.com/topic/33701-login-script/ Share on other sites More sharing options...
ultrus Posted January 11, 2007 Share Posted January 11, 2007 Hello PC Nerd,From an intermediate newbie perspective, I would say that if the record count is 1 or greater, you're good to go. I would also recommend encrypting the passwords before entering them in the database, and check against encrypted input. Link to comment https://forums.phpfreaks.com/topic/33701-login-script/#findComment-158039 Share on other sites More sharing options...
trq Posted January 11, 2007 Share Posted January 11, 2007 If the query returns a result then your data has allready been checked.Didn't we have this conversation the other day? :) Link to comment https://forums.phpfreaks.com/topic/33701-login-script/#findComment-158042 Share on other sites More sharing options...
PC Nerd Posted January 11, 2007 Author Share Posted January 11, 2007 1: Ultrus - how do i encrypt??? i am completely new to anything like that2: Thorpe - nope, it was a differnt topicon the same script. except i am rewriteing the script becauase i was just too confused with the other one ( i did write the other on though, i just didnt document its changes) thanks for all your help......Pc Nerd Link to comment https://forums.phpfreaks.com/topic/33701-login-script/#findComment-158044 Share on other sites More sharing options...
ultrus Posted January 11, 2007 Share Posted January 11, 2007 After doing a quick search on google, I found this page:http://www-128.ibm.com/developerworks/library/os-php-encrypt/index.htmlIt should help with password forms and security. :) Link to comment https://forums.phpfreaks.com/topic/33701-login-script/#findComment-158045 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.