Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Libraries & Helpers Database password with MD5
Database password with MD5
  • El Forum
    Guest
  •  
#3
05-02-2012, 04:07 AM

[eluser]WanWizard[/eluser]
Passwords should always be hashed (= one way process), not encrypted.

The most secure way to hash at the moment is using bcrypt or pbkdf2, and combine the password with a random salt for added security.

Ideally a per-user salt, even more ideally regenerated after each login, but if not possible a generic salt stored in a config file or a settings table (or combine the two).


Messages In This Thread
Database password with MD5 - by El Forum - 05-02-2012, 01:34 AM
Database password with MD5 - by El Forum - 05-02-2012, 02:41 AM
Database password with MD5 - by El Forum - 05-02-2012, 04:07 AM
Database password with MD5 - by El Forum - 05-02-2012, 04:25 AM
Database password with MD5 - by El Forum - 05-02-2012, 06:00 AM
Database password with MD5 - by El Forum - 05-02-2012, 08:03 AM
Database password with MD5 - by El Forum - 05-02-2012, 09:31 AM
Database password with MD5 - by El Forum - 05-02-2012, 04:42 PM



Theme © iAndrew 2016 - Forum software by © MyBB