From several sources I have seen recommendations to encrypt authentication data (e.g., login passwords, certificates) when used within php code and yet I have not seen an explanation of how to do so. It would seem that if I encrypted the data within the code I would also need to place the decryption key within the code which would gain nothing for overall security. There must be something I am not understanding here! Can someone explain? Thanks.