Beginner help

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
jeffjustice
Forum Newbie
Posts: 2
Joined: Mon Jul 07, 2008 7:33 am

Beginner help

Post by jeffjustice »

Hello!
I am new to PhP and I need to make a simple login page. I searched the web for some tutorials and found this one: codervods.com/VideoPage.aspx?ID=915&&category=All
I want to know if there is any way to hide the password for some users who have acces to the database. I admit I haven't searched to much, I must make it fast.
User avatar
Apollo
Forum Regular
Posts: 794
Joined: Wed Apr 30, 2008 2:34 am

Re: Beginner help

Post by Apollo »

You should never store passwords in a database. Only hashes, preferably mixed up with some noise.

For example: instead of storing $password, rather store sha1($password."12345YourMommasMaidenName").
Post Reply