News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Andreas Gohr's Blog:
Working with Password Hashes in PHP
July 29, 2008 @ 12:57:43

Andreas Gohr has a general overview of hashing in a new post to his blog:

Every good programmer knows, that passwords should never be stored in clear text. Instead a one way hash (or digest) should be used. This way user passwords are not at risk in case of an intrusion.

He points out the multiple ways that PHP offers for both simple hashing (like md5 or sha1) and the true encryption types (like ssha, apr1 and crypt). He shows how they work in the DokuWiki application via a call to auth_cryptPassword to make it and db_get_hash/auth_verifyPassword to check against it.

0 comments voice your opinion now!
password hash encrypt method dokuwiki


blog comments powered by Disqus

Similar Posts

Kavoir.com: Just Hashing is Far from Enough for Storing Passwords (Dictionary & Rainbow Attacks)

Andreas Gohr's Blog: Working with Password Hashes in PHP

Brandon Savage: Private Methods Considered Harmful ("Do This, Not That" Excerpt)

Liip Blog: First Release of Proxy-Object

Matthew Weir O'Phinney's Blog: Phly_Struct? no, Phly_Hash...


Community Events





Don't see your event here?
Let us know!


library laravel framework list developer interview api threedevsandamaybe install application configure podcast wordpress release series community language bugfix introduction unittest

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework