Solved

Store security login information in web site ?

Posted on 2014-12-01
4
116 Views
Last Modified: 2015-05-11
Now I will develop CMS web site so

I want to ask there best way to store username & password rather than store in table with database ?

I will use Oracle 10g database
0
Comment
Question by:ebwor
4 Comments
 
LVL 76

Accepted Solution

by:
slightwv (䄆 Netminder) earned 250 total points
ID: 40473954
You typically store a hashed value of the password.  Hashs cannot be easily decrypted but can be ran against a rainbow table if someone knows the hashing method used.

This can be tightened up if you use a different SALT for each one.  You can store the salt used in a different table and control access through stored procedures.
0
 
LVL 13

Assisted Solution

by:Alexander Eßer [Alex140181]
Alexander Eßer [Alex140181] earned 250 total points
ID: 40473970
OWASP (https://www.owasp.org/index.php/Main_Page) ist a quite good point to start with, apart from all the excellent information that can be gathered here ;-)
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ensuring effective and secure communication in the age of healthcare BYOD.
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
Via a live example, show how to restore a database from backup after a simulated disk failure using RMAN.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question