[nycphp-talk] best code for Login !.
Kevin
kevin at sycoward.com
Fri Jun 14 10:19:27 EDT 2002
I have used the approach of storing md5 encrypted passwords in the
database, with no copy of the real password. Then when the user logs in
with
a password, md5 that and check it against the encrypted password in the
database.
I use a random password generator for when users lose their passwords,
and send it
to them via email. Its not all that original, but its secure enough, and
has worked for me.
Good luck
More information about the talk
mailing list