News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Mike Dalisay:
Salt, Hash and Store Passwords Securely with Phpass
April 08, 2013 @ 12:16:29

On Mike Dalisay's site there's a recent post showing how to use the Phpass tool to salt, hash and store passowrd data in your application.

I think the main reason why we have to hash passwords is to prevent passwords from being stolen or compromised. You see, even if someone steal your database, they will never read your actual or cleartext password. I know that some PHP frameworks or CMS already provide this functionality, but I believe that it is important for us to know how its implementation can be made.

His sample application stores the user data in a MySQL database and does the salting+hashing at the time of the request. It uses a hard-coded salt and a value of 8 for the hashing/stretching. Screenshots of each page in the example application are also included.

0 comments voice your opinion now!
phpass salt hash password mysql tutorial email validate

Link: http://www.codeofaninja.com/2013/03/php-hash-password.html#.UVziYKUm0sc.dzone

blog comments powered by Disqus

Similar Posts

Vexxhost.com: Top 5 new (and cool!) features in PHP5 that you probably haven't heard of

IBM developerWorks: Cloud computing with PHP, Part 1: Using Amazon S3 with the Zend Framework

Jacob Santos' Blog: PHP Blackjack

DevShed: Embedding Model Data in Views with CodeIgniter

Anson Cheung's Blog: 8 essential checks on securing PHP


Community Events











Don't see your event here?
Let us know!


language release framework install hack component security introduction symfony2 series application opinion podcast code unittest facebook composer package hhvm threedevsandamaybe

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework