NYCPHP Meetup

[nycphp-talk] best code for Login !.

Kevin kevin at sycoward.com
Fri Jun 14 10:19:27 EDT 2002


I have used the approach of storing md5 encrypted passwords in the
database, with no copy of the real password. Then when the user logs in 
with
a password, md5 that and check it against the encrypted password in the 
database.
I use a random password generator for when users lose their passwords, 
and send it
to them via email. Its not all that original, but its secure enough, and 
has worked for me.
Good luck




More information about the talk mailing list