How to compare ms sql hashbytes results within vb6
We are using ms sql hashbytes to encrypt a password column. What would be the best way to retrieve the value, compare and give the correct results to the user? In ssms we can 'IF HASHBYTES('SHA1','ExpertEx
How do we get file?
Depends on your application.
Do we need it?
Depends on your application.
Does the apps return the same value as SQL HASHBYTE function (see below example)?
Maybe, the image does not show any hash handling.
p.s. IF HASHBYTES('SHA1','ExpertEx
Depends on your application.
Do we need it?
Depends on your application.
Does the apps return the same value as SQL HASHBYTE function (see below example)?
Maybe, the image does not show any hash handling.
p.s. IF HASHBYTES('SHA1','ExpertEx
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
ste5an,
Pawan Kumar Khowal,
In essence, what we want if to compare the HASBYTE value saved in the MS SQL table against the resulting HASHBYTE value in the vb6 apps. We think our process would be something like this with the code:
1. In the vb6 code ask the user for the password.
2. Convert that value to the HASHBYTE value. <-- (THIS IS WHERE WE WANT ASSISTANCE)
3. Read the SQL table and bring the HASHBYTE value already saved for comparison
4. Compare the users entry password's HASHBYTE value to what is saved in the SQL table.
"p.s. IF HASHBYTES('SHA1','ExpertEx
We placed this for references since we started are working with HASHBYTES function SQL and wanted to know how to do it in vb6.
"How do we get file?
Depends on your application."
The apps is not ours, we found it and ran and it gave us that message, so we thought an expert can assist on the message
"Do we need it?
Depends on your application."
Same answer, we thought that by showing he code to EE, it would help helping us; again, it's not our code.
Can you take a look at the code? (maybe you can detect the problem)
"Store a salted hash instead of it."
Please provide an example of the process.
We placed this for references since we started are working with HASHBYTES function SQL and wanted to know how to do it in vb6.
"How do we get file?
Depends on your application."
The apps is not ours, we found it and ran and it gave us that message, so we thought an expert can assist on the message
"Do we need it?
Depends on your application."
Same answer, we thought that by showing he code to EE, it would help helping us; again, it's not our code.
Can you take a look at the code? (maybe you can detect the problem)
"Store a salted hash instead of it."
Please provide an example of the process.
Pawan Kumar Khowal,
Thanx, if working in SSMS that would be great, however we are working with vb6 (unless we can pass the users password to SQL and compre and return the resulat back to the vb6 apps?).
In essence, what we want if to compare the HASBYTE value saved in the MS SQL table against the resulting HASHBYTE value in the vb6 apps. We think our process would be something like this with the code:
1. In the vb6 code ask the user for the password.
2. Convert that value to the HASHBYTE value. <-- (THIS IS WHERE WE WANT ASSISTANCE)
3. Read the SQL table and bring the HASHBYTE value already saved for comparison
4. Compare the users entry password's HASHBYTE value to what is saved in the SQL table.
ASKER
For some reason didn't quite read your entry. We always re-read the entire question prior deleting one that there is no answer to. Doing that we slowed down on your entry and modified some and it worked! So pleasa excuse the delay and thanx!
ASKER
found this vb code to see how to incorporate what want.
Works fine for Hash ansi & unicode but not for sha1, it gies an error on 'SHA1Hash.HashFile' like it doesn't exist (see pix below)
Do we need it?
Does the apps return the same value as SQL HASHBYTE function (see below example)?
Sql:
SELECT HASHBYTES('SHA1', 'ExpertExchange')
Results:
0x8E054939FFEE22BFC46C7A38
(see code attached)
SHA1-Hash.zip