Beefy Boxes and Bandwidth Generously Provided by pair Networks Bob
go ahead... be a heretic
 
PerlMonks  

Re: Re: Ecryption?

by Punto (Scribe)
on Feb 17, 2001 at 23:37 UTC ( [id://59195]=note: print w/replies, xml ) Need Help??

This is an archived low-energy page for bots and other anonmyous visitors. Please sign up if you are a human and want to interact.


in reply to Re: Ecryption?
in thread Ecryption?

So, for the encryption I could use 'MD5' (what is md5?), and a session ID system..
The session ID would be like the 'key', and I need it to decrypt the password on the server side, right?

I know there is an apache module that takes care of the session ID thing.

(thanks)

Replies are listed 'Best First'.
Re: Re: Re: Ecryption?
by Punto (Scribe) on Feb 18, 2001 at 00:19 UTC
    actually (replying to myself) I'd make a 'digest' with the password and the session id, and post that on the forms, and authenticate against that. The problem is that the script is not saving the password as plaintext on the database (crypt()). I but I could still use it. Thanks!

    UPDATE: this is the solution I used after all. I get the session number from mod_session (apache module), and I create an 'md5_base64' string with that and the crypt()ed password (that's how the passwords are stored on the base), that's what I put on the forms.
    Thanks everyone for your help!

[reply]

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://59195]
help
Sections?
Information?
Find Nodes?
Leftovers?
    Notices?
    hippoepoptai's answer Re: how do I set a cookie and redirect was blessed by hippo!
    erzuuliAnonymous Monks are no longer allowed to use Super Search, due to an excessive use of this resource by robots.