PHP School Assignment? Project Due Tomorrow? Chat LIVE With A Programming Expert!

Dream.In.Code > Programming Help > PHP

Welcome to Dream.In.Code
	Become a PHP Expert! Join 300,574 PHP Programmers for FREE! Get instant access to thousands of PHP experts, tutorials, code snippets, and more! There are 2,195 people online right now. Registration is fast and FREE... Join Now! Chat LIVE With a PHP Expert

salted md5 code

salted md5 code

anarki	14 Oct, 2007 - 10:38 PM Post #1
New D.I.C Head Joined: 14 Oct, 2007 Posts: 2 My Contributions	i have a php code for login..i want to encrypt the user name and password so that it can not be seen in clear text by means of any tool..can u give me the proper salted md5 code which will help in encryption..the code is given below. CODE <? include '../cms/connect.php'; session_start(); session_register("loginflag"); session_register("username_session"); //Added addslashes /$sql="select from loginmaster where user_login='".addslashes($txt_uname)."' and user_pass='".addslashes($txt_pass)."' and user_status='Y'"; / // member login using password encription $sql="select from loginmaster where user_login='".addslashes($txt_uname)."' and encr_pass='".md5($txt_pass)."' and user_status='Y'"; $rs_sql=mysql_query($sql); if(mysql_num_rows($rs_sql)>0) { $rs=mysql_fetch_array($rs_sql); $loginflag='Y'; $username_session=$rs["user_login"]; unset($_POST[txt_uname]); unset($_POST[txt_pass]); $_POST[txt_uname]=md5('a '); $_POST[txt_pass]=md5('b '); echo "<script>window.location.href='../index.php'</script>"; } else { $loginflag='N'; echo "<script>alert('Invalid Username or Password, Please try again.')</script>"; echo "<script>window.location.href='../index.php'</script>"; } thanks.. [mod edit] Use Code tags!
	This Post Was Helpful!

Register for Free to Make These Ads Go Away!

spullen	RE: Salted Md5 Code 15 Oct, 2007 - 07:45 AM Post #2
D.I.C Regular Joined: 22 Mar, 2007 Posts: 356 Thanked: 9 times Dream Kudos: 100 My Contributions	I just md5 the passwords when they go into the database, and then make a method called authenticate that looks like this: CODE public function authenticate($username, $password){ $authenticated = false; $this->openDB(); $md5_password = md5($password); $query = "SELECT * FROM users WHERE username = '".$username."' LIMIT 1"; if(!$result = $this->db->query($query)){ die("Error: ".$this->db->error); } $row = $result->fetch_assoc(); if($row['md5_password'] == $md5_password){ $authenticated = true; } $this->closeDB(); return $authenticated; } Which just takes in the password that the person is using to log in and the username and then md5's the password and checks it against the md5'ed password in the database.
	This Post Was Helpful!

snoj	RE: Salted Md5 Code 15 Oct, 2007 - 09:52 AM Post #3
Now with 10% more nom! Joined: 31 Mar, 2003 Posts: 3,369 Thanked: 29 times Dream Kudos: 775 My Contributions	Authenticating isn't the problem spullen (though thank you for your efforts). Salting is putting some extra data with the password before it's hashed, that way a password's hash will look different and (hopefully) help prevent a dictionary attack. Hashing is one way, once a string is hashed, it you shouldn't be able to know what the original string was, in other words it's a one way street.
	This Post Was Helpful!

Fast Reply

Reply to this topic

Start new topic

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Time is now: 11/8/09 08:12AM

Invision Power Board v2.1.7 © 2009 IPS, Inc.

Licensed to: MediaGroup1

Advertising | Terms of Use | Privacy Policy | About Us | Site Map

Advertise on this site through Lake Quincy Media

Forum Index: Programming Help | C and C++ | VB6 | Java | VB.NET | C# | ASP.NET | PHP | ColdFusion | Perl and Python | Ruby | Databases | Other Languages | Game Programming | Mobile Development | Software Development | Computer Science | Industry News | Programming Tutorials | C++ Tutorials | Visual Basic Tutorials | Java Tutorials | VB.NET Tutorials | C# Tutorials | Linux Tutorials | PHP Tutorials | ColdFusion Tutorials | Windows Tutorials | HTML/JavaScript Tutorials | CSS Tutorials | Flash Tutorials | Web Promotion Tutorials | Graphic Design & Photoshop Tutorials | Software Development Tutorials | Database Tutorials | Other Language Tutorials | ASP.NET Tutorials | Game Programming Tutorials | WPF & Silverlight Tutorials |

Copyright 2001-2008 MediaGroup1 LLC, All Rights Reserved
A MediaGroup1 LLC Production - Version 6.0.2.1.36
Server: secure2

Search^Updated!w00t

Over 509,000 Pages! Advanced Forum Search

Live PHP Help!

Be Social

PHP Tutorials

Reference Sheets

PHP Snippets

DIC Chatroom

Join our IRC Chat

Bye Bye Ads

Monthly Drawing

Top Contributors

Top 10 Kudos This Month