Re: Encrypting Passwords — PHP Programming Language

You are here: Re: Encrypting Passwords « PHP Programming Language « IT news, forums, messages

Posted by Cord-Heinrich Pahlmann on 01/10/07 08:40

Gordon Burditt schrieb:

> Known best practices include:
> Don't store the passwords in plain text or reversible encryption.

Yep. I don't.

> Don't transmit passwords in the clear over the network.
That's something I do.
Question: Does it make a difference if I type my password into a
password-formular of a webpage or if my script computes the whole
login-form (so the password will be there, too) and then sends it via
POST to the webpage?

It would look like this:
<form action="http://www.ThePageIWannaLoginTo" method="POST">
<input type="hidden" name="username" value="MyUsername">
<input type="hidden" name="password" value="MyClearTextPassword">
<input type="submit" value="Login">
</form>

Navigation:

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация