News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

NetTuts.com:
Understanding Hash Functions and Keeping Passwords Safe
January 18, 2011 @ 08:05:29

On NetTuts.com today there's a new tutorial from Burak Guzel about keeping your passwords (and web applications) safer by using hashing with passwords and understanding which of the PHP functions is right for you.

From time to time, servers and databases are stolen or compromised. With this in mind, it is important to ensure that some crucial user data, such as passwords, can not be recovered. Today, we are going to learn the basics behind hashing and what it takes to protect passwords in your web applications.

The article is a simple introduction to the topic and doesn't claim that it will protect you 100% but it's good to get the ball rolling. They talk about md5 hashing and the crypt method. He also outlines a few problems that surround hashing - hash collisions, attackers using "rainbow tables" and how quickly the average computer can run through hashes (an average 8 character password could be broken in around 60 hours). For each, he includes a few things you can do in your code to help prevent them from happening.

0 comments voice your opinion now!
hashing password md5 crypt salt tutorial


blog comments powered by Disqus

Similar Posts

DevShed: Building a Blogger with the Code Igniter PHP Framework

PHPMaster.com: Writing a RESTful Web Service with Slim

Tim Koschuetzki's Blog: How To Transform HTML To Textile Markup - The CakePHP TextileHelper Revisite

Ariz Jacinto's Blog: Compiling PHP with MSSQL Server's Native ODBC Driver for Linux as a PDO Driver

Zend Developer Zone: Wrapping C++ Classes in a PHP Extension


Community Events





Don't see your event here?
Let us know!


introduction library language podcast conference security symfony artisanfiles version interview voicesoftheelephpant framework tool list opinion laravel series release composer community

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework