Secured Password

[dream25]

hi.. how to code for a secured password...Please Help me..Thanks in Advance

[jitesh]

save encryplted password in database

 

and descrypt when retrive.

[taith]

for example... store md5('password'); into the database.. then for your login...

 

$user=$_POST[username]; #secure that
$pass=md5($_POST[password]);
$query=mysql_query("SELECT * FROM `users` WHERE `login`='$user' AND `pass`='$pass' LIMIT 1");

 

if $query pulls the row, your in, if not, redirect to login page

[dream25]

Thanks.. here my doubt is how we know that MD5 password is working...

[taith]

echo md5($_POST[password]);

 

she works

[Lumio]

md5 is not that save because many webapplications useing MD5

SHA-1 is better and the best is to make your own encryption

For example:

<?php
   function myownEncrypter($s) {
      $s = strrev($s).md5(strlen($s));
      $s = sha1($s);
      return $s;
   }
?>

[dream25]

Thanks.. will u please explain the code what u gave.. and where will i use this function..

 

<?php

  function myownEncrypter($s) {

      $s = strrev($s).md5(strlen($s));

      $s = sha1($s);

      return $s;

  }

?>

[Lumio]

You use this function like md5... it's just a function that makes a little different hash.

Sorry, I'm a little lazy so:

strrev

strlen

md5

sha1

[taith]

ya... if you md5 somin... you got bout 80% chance of finding its value on a google search lol.... however... sha1 is almost as bad... so you never want to encrypt one on its own... say... echo sha1(md5($s).strrev(sha1($s)));

[dream25]

Thanks..