| Subject | Re: Favor: Encrypt passwords |
|---|---|
| Author | wade |
| Post date | 2000-01-22T00:30:01Z |
One note of course. if you do use the MD5 functions in freeudf library,
make sure you send the source example with a different key, but I figure
that would have been obvious, but just in case I figured I'd mention it
:).
make sure you send the source example with a different key, but I figure
that would have been obvious, but just in case I figured I'd mention it
:).
On Fri, 21 Jan 2000, wade wrote:
> Well since I use linux on server side on about everything, I would say use
> the crypt function if you just want simple encryption, or even better
> descrypt function or if you require ssl use openssl or ssleay. I do
> believe there is a windows port of ssleay...check out the links to ssleay
> at www.apache-ssl.org. Maybe that will help, but maybe not as I have no
> idea how far along the windows port is. I would also suggest the MD5
> encode/decode functions in freeudf library, thought I can't honestly say
> if windows version of that has a similar function as again I use the unix
> one, if it does...this would be too easy to implement.
>
> Randal
>
>
> On Fri, 21 Jan 2000, Jason Wharton wrote:
>
> > From: "Jason Wharton" <jwharton@...>
> >
> > I would like to take the password that people enter into the survery and send and store only the encrypted version of it over the net. This way the original password will remain non-disclosed but the provider will have reasonable security that nobody else is going to ever see their actual password. I don't want people's raw passwords in the IBDI database.
> >
> > I'd like to continue providing the full source for this tool so I wonder if someone would be kind enough to provide a snippet of code that will encrypt the password.
> >
> > Preferrably one that is compatible with any encryption a browser may support. Is there an encrypt tag for an HTML input field? Probably not... I guess the CGI/ISAPI will have to take care of the encryption on the server. In which case the same snippet of code will do just fine since it will be written in Delphi as well.
> >
> > Thanks,
> > Jason Wharton
> > InterBase Developer Initiative
> > jwharton@...
> >
> >
> > Community email addresses:
> > Post message: IBDI@onelist.com
> > Subscribe: IBDI-subscribe@onelist.com
> > Unsubscribe: IBDI-unsubscribe@onelist.com
> > List owner: IBDI-owner@onelist.com
> >
> > Shortcut URL to this page:
> > http://www.onelist.com/community/IBDI
> >
>
>