News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHPMaster.com:
Password Hashing In PHP
January 14, 2013 @ 11:57:32

On PHPMaster.com there's a new tutorial that wants to help you keep your application and users a bit safer - a guide to password hashing for PHP applications.

You must always think about security. If passwords are stored in plain text, what happens if an attacker gains access to your database? He can easily read all of the users' passwords. That's why we use a technique called password hashing to prevent attackers from getting user passwords. In this article you'll learn how to store the passwords securely in the database so that, even if your database falls into wrong hands, no damage will be done.

He starts off describing what password hashing is and why it's important (and better than it's plain-text alternative). He gives some examples of using some of the built-in hashing functions PHP has to offer to generate the hashes. He starts with md5/sha1 (note, these are not recommended) but moves into more effective options like sha256, salted hashing and even bcrypting passwords with crypt.

Be sure to check out the comments for other security concerns and links to suggested tools and resources.

0 comments voice your opinion now!
password hash tutorial md5 sha1 sha256 bcrypt


blog comments powered by Disqus

Similar Posts

Fabien Potencier's Blog: Create your own framework... on top of the Symfony2 Components (part 10)

CodePoets.co.uk: How to use PHP and PEAR MDB2 (Tutorial)

Kevin Schroeder's Blog: New Zend Server Job Queue Library

Brian Swan's Blog: Consuming SQL Azure Data with the OData SDK for PHP

DevShed: Introducing Static Members and Methods in PHP 5 (Part 1)


Community Events





Don't see your event here?
Let us know!


laravel threedevsandamaybe developer interview code framework community language opinion series introduction release wordpress install refactor configure unittest list testing podcast

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework