SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Member
    Join Date
    Jan 2013
    Posts
    14
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)

    Smile comment's on security

    Hy!
    iam going to decide to SHA_512 with salt in my web project.
    ut iam still in confiusion that there is some problem in it..
    the hashing algorithm just hash the data before saving it in to the database something like ( 45454dsdsd54d4sd ).
    how can the admin know about the user password?
    how can he access to his personal data/profile?

    if there is anothr way to secure the user input data in web please tell me...
    Thank's.

  2. #2
    Community Advisor bronze trophy
    fretburner's Avatar
    Join Date
    Apr 2013
    Location
    Brazil
    Posts
    1,386
    Mentioned
    45 Post(s)
    Tagged
    12 Thread(s)
    The reason for hashing the password before saving it is so that if anyone got access to the DB they wouldn't be able to read it. No one should know the password except for the user themselves.

  3. #3
    Programming Since 1978 silver trophybronze trophy felgall's Avatar
    Join Date
    Sep 2005
    Location
    Sydney, NSW, Australia
    Posts
    16,784
    Mentioned
    25 Post(s)
    Tagged
    1 Thread(s)
    A lot of people stupidly use the same password for multiple sites - by hashing their password with a salt you help ensure that if someone gets access to your database that they can't use the passwords there to access your user's bank accounts if they used the same password there. It also ensures you don't get the blame if their bank account does you the same password since you can demonstrate that you have no way to tell what password anyone is using for your site (except your own).
    Stephen J Chapman

    javascriptexample.net, Book Reviews, follow me on Twitter
    HTML Help, CSS Help, JavaScript Help, PHP/mySQL Help, blog
    <input name="html5" type="text" required pattern="^$">


Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •