asked on Encrypt and decrypt passwords in php
What is the best way to encrypt a password to store in mysql databese? I mean in both ways ( encryption and decryption)?
I read about md5 is not enough since it's easly be decrypted....
What do you suggest i should do to hash passwords and decrypt it?
I read about md5 is not enough since it's easly be decrypted....
What do you suggest i should do to hash passwords and decrypt it?
PHP
Last Comment
BR
The best way? The best way is not to store passwords. Store a salted hash instead.
Hashes like MD5 and SHA are one-way functions. MD5 takes some serious computing power to break it. SHA takes more. Where there is no financial reward for 'breaking' the passwords, MD5 is still used because it is good enough.
This page addresses what PHP provides: http://php.net/manual/en/faq.passwords.php And more info: http://phpsec.org/articles/2005/password-hashing.html
This page addresses what PHP provides: http://php.net/manual/en/faq.passwords.php And more info: http://phpsec.org/articles/2005/password-hashing.html
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thank you all,
So i should use salted hash and to store passwords, when i check the passwords i actually check the hash version of the password to compare if it is valid or not?
Right?
So i should use salted hash and to store passwords, when i check the passwords i actually check the hash version of the password to compare if it is valid or not?
Right?
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thank you all