Re: [WebDNA] ENCRYPTION problems
This WebDNA talk-list message is from 2012
It keeps the original formatting.
numero = 109272
interpreted = N
texte = Included in WebDNA 7+ is a strong blowfish algorithm (probably the most =secure encrypting system available with WebDNA)It was also existing in WebDNA 6 but undocumented because there were =some problems with it. Problems fixed with WebDNA 7+.- chrisOn Jul 6, 2012, at 10:53, Govinda wrote:>=20>> I have a task to create a login system for a client where the client =stores the password and username on their SQL db.>>=20>> I have to send them the username and pre-encrypted password to store.>>=20>> When I need to have a customer login I need to match the username and =password, the problem is that using ENCRYPT with a seed will never =produce the same result.>>=20>> How safe is [ENCRYPT] without a seed ?>>=20>> Or any suggestions for another encryption method ?>=20>=20> I think modern systems do not store unencrypted passwords. If the =database ever gets hacked-stolen.. then the passwords are exposed... =which is not the case if we do not store the unencrypted passwords. =20>=20> The last login system I built in Webdna, I checked the input password =something like this:>=20> [showif] [url]form-input password[/url] =3D [url]db's =[decrypt...]*encrypted* password[/decrypt][/url]]=20>=20> ... inside a [founditems].. inside the [search] that finds a user =record based on form-input username.>=20> -G---------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list
.> To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us> Bug Reporting: support@webdna.us
Associated Messages, from the most recent to the oldest:
Included in WebDNA 7+ is a strong blowfish algorithm (probably the most =secure encrypting system available with WebDNA)It was also existing in WebDNA 6 but undocumented because there were =some problems with it. Problems fixed with WebDNA 7+.- chrisOn Jul 6, 2012, at 10:53, Govinda wrote:>=20>> I have a task to create a login system for a client where the client =stores the password and username on their SQL db.>>=20>> I have to send them the username and pre-encrypted password to store.>>=20>> When I need to have a customer login I need to match the username and =password, the problem is that using ENCRYPT with a seed will never =produce the same result.>>=20>> How safe is [encrypt] without a seed ?>>=20>> Or any suggestions for another encryption method ?>=20>=20> I think modern systems do not store unencrypted passwords. If the =database ever gets hacked-stolen.. then the passwords are exposed... =which is not the case if we do not store the unencrypted passwords. =20>=20> The last login system I built in Webdna, I checked the input password =something like this:>=20> [showif] [url]form-input password[/url] =3D [url]db's =[decrypt...]*encrypted* password[/decrypt][/url]]=20>=20> ... inside a [founditems].. inside the [search] that finds a user =record based on form-input username.>=20> -G---------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us> Bug Reporting: support@webdna.us
christophe.billiottet@webdna.us
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Problem: 3.0 doesn't update carts (1997)
Quit revisited (1997)
adding up in a db (1997)
RE: WebDNA-Talk searchable? (1997)
Enhancement Request for WebCatalog-NT (1996)
autosensing lanague selection (1997)
Emailer & WebStar Mail and 551 Error (2000)
Pithy questions on webcommerce & siteedit (1997)
WebDNA 4.5.1 Now Available (2003)
Question about replacing words (1998)
Nesting format tags (1997)
Credit card processing - UK (1997)
multiple search commands (1997)
emails sent via WebDNA 6.0a disappearing into thin air (2005)
TCPConnect / Current Temperature (2004)
[WebDNA] DBServer.exe Max CPU (2014)
SiteGuard Use Question (1997)
garbage on page (2000)
DB permission issues (2004)
WebCatalog f2 Installation (1997)