News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHPit.net:
Handling passwords safely in PHP
February 06, 2006 @ 07:17:10

PHPit.net is back today with another new tutorial - this time it concerns the safe handling of passwords in your PHP scripts.

If you're ever going to create a script that involves users or passwords, which is very likely, you'll probably run across security issues with handling the passwords. You can't just store the passwords in clear text in your database, and great care must be used when managing the passwords (for example during login).

In this article I will show you everything that you have to think about when handling passwords in PHP, and how to solve some common problems.

They offer suggestions like storying them hashed (md5 or sha1), protecting them with a salt, SSL certificates, and how to manage their use with things like cookies and sessions.

0 comments voice your opinion now!
handle password safely logging signup md5 sha1 ssl handle password safely logging signup md5 sha1 ssl


blog comments powered by Disqus

Similar Posts

Kavoir.com: Just Hashing is Far from Enough for Storing Passwords (Dictionary & Rainbow Attacks)

PHPit.net: Handling passwords safely in PHP

IBM developerWorks: Cook up Web sites fast w/CakePHP, Part 1: Adding related information & services

Jani Hartikainen's Blog: Handling errors in Zend Framework

Jeremy Kendall: PHP Password Hashing: A Dead Simple Implementation


Community Events





Don't see your event here?
Let us know!


unittest laravel bugfix language symfony package zendserver framework release opinion api library interview community install series voicesoftheelephpant deployment podcast introduction

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework