Re: [WebDNA] ENCRYPTION problems

This WebDNA talk-list message is from

2012

It keeps the original formatting. numero = 109272
interpreted = N
texte = Included in WebDNA 7+ is a strong blowfish algorithm (probably the most =secure encrypting system available with WebDNA)It was also existing in WebDNA 6 but undocumented because there were =some problems with it. Problems fixed with WebDNA 7+.- chrisOn Jul 6, 2012, at 10:53, Govinda wrote:>=20>> I have a task to create a login system for a client where the client =stores the password and username on their SQL db.>>=20>> I have to send them the username and pre-encrypted password to store.>>=20>> When I need to have a customer login I need to match the username and =password, the problem is that using ENCRYPT with a seed will never =produce the same result.>>=20>> How safe is [ENCRYPT] without a seed ?>>=20>> Or any suggestions for another encryption method ?>=20>=20> I think modern systems do not store unencrypted passwords. If the =database ever gets hacked-stolen.. then the passwords are exposed... =which is not the case if we do not store the unencrypted passwords. =20>=20> The last login system I built in Webdna, I checked the input password =something like this:>=20> [showif] [url]form-input password[/url] =3D [url]db's =[decrypt...]*encrypted* password[/decrypt][/url]]=20>=20> ... inside a [founditems].. inside the [search] that finds a user =record based on form-input username.>=20> -G---------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us> Bug Reporting: support@webdna.us Associated Messages, from the most recent to the oldest:

Re: [WebDNA] ENCRYPTION problems (Stuart Tremain 2012)
Re: [WebDNA] ENCRYPTION problems (Donovan Brooke 2012)
Re: [WebDNA] ENCRYPTION problems (christophe.billiottet@webdna.us 2012)
Re: [WebDNA] ENCRYPTION problems (Govinda 2012)
[WebDNA] ENCRYPTION problems (Stuart Tremain 2012)

Included in WebDNA 7+ is a strong blowfish algorithm (probably the most =secure encrypting system available with WebDNA)It was also existing in WebDNA 6 but undocumented because there were =some problems with it. Problems fixed with WebDNA 7+.- chrisOn Jul 6, 2012, at 10:53, Govinda wrote:>=20>> I have a task to create a login system for a client where the client =stores the password and username on their SQL db.>>=20>> I have to send them the username and pre-encrypted password to store.>>=20>> When I need to have a customer login I need to match the username and =password, the problem is that using ENCRYPT with a seed will never =produce the same result.>>=20>> How safe is [encrypt] without a seed ?>>=20>> Or any suggestions for another encryption method ?>=20>=20> I think modern systems do not store unencrypted passwords. If the =database ever gets hacked-stolen.. then the passwords are exposed... =which is not the case if we do not store the unencrypted passwords. =20>=20> The last login system I built in Webdna, I checked the input password =something like this:>=20> [showif] [url]form-input password[/url] =3D [url]db's =[decrypt...]*encrypted* password[/decrypt][/url]]=20>=20> ... inside a [founditems].. inside the [search] that finds a user =record based on form-input username.>=20> -G---------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us> Bug Reporting: support@webdna.us christophe.billiottet@webdna.us

DOWNLOAD WEBDNA NOW!

Re: [WebDNA] ENCRYPTION problems

2012

Top Articles:

Related Readings: