Click here to Skip to main content
15,881,248 members
Search within:


website development using php/mysql
Please Sign up or sign in to vote.
1.40/5 (3 votes)
See more:
HTML
PHP
MySQL
I am developing a website where the user need to register. After registration he can got some facility extra.

at the time of registration only the user will provide their email id and password.

Is it mandatory to encrypt the password in mysql.
If i am not doing so, then what can happen?

if it is mandatory then suggest me the way.
Posted
Updated 21-Sep-12 5:44am
v3
Add a Solution

3 solutions

Go through Why encrypt user passwords?[^].

It is not mandatory, but encrypted passwords will help the website to be free from Password cracking[^].

And Encrypting passwords with mySQL/PHP[^] will help you find different methods to do in PHP/mySQL.

Thanks...
 
Share this answer
 
Posted
Comments
[no name] 21-Sep-12 12:15pm    
ok thanks
Peter Leow 2-Mar-14 0:36am    
Very comprehensive answer, +5.
Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ) 2-Mar-14 10:37am    
Thanks Peter. :)
Well my friend, It is not mandatory but is safe approach to do so....... You can search php reference to find out the ways to do so. I had designed a website wherein I simply generated the md5 hash of the password supplied by the user and this way whenever I received the password entered by user at the time of login, I simply generated it's md5 hash and then, compare it with the hash already stored in the database. i guess it as simple as well as reliable method but I cannot say anything about applying it in the real world application as mine was only a test website that I created only for learning...

Hope it can help you.

Regards
Tushar Srivastava
 
Share this answer
 
Posted
Comments
[no name] 21-Sep-12 11:54am    
its not sufficient.
I need yes/no answer of my question.
then why?
Er. Tushar Srivastava 21-Sep-12 11:59am    
You only need answer in either Yes/No?
Well then I will certainly say YES...
And the reason for this is, that there are many dangerous guys out there who always tries to peep into your security and if they succeed, then they will get the list of all the users with the passwords as well, it can be dangerous for users of your website as well as for you :-( So, it's mandatory to use Encryption in real world application.
[no name] 21-Sep-12 12:15pm    
ok thanks
Er. Tushar Srivastava 21-Sep-12 12:16pm    
It's all right :-)
its not necessary to encrypt password but notice that not to put password in cookies or links and also not to show the password even to the owner , use password type only.

but its better to encrypt to safe the user info.
 
Share this answer
 
Posted
Add a Solution

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

  Print Answers RSS
Top Experts
Last 24hrsThis month
Related Questions
Web app PHP and mysql
What is the simplest code to play an audio file from mysql database using PHP?
play video using PHP & mySQL
Crawled websites not inserting into my SQL table | PHP web crawler
How to insert image in mysql database using PHP source code..?
how to create a search button in our website using php with mysql database
Why we use foreign key in mysql database table when creating php website?
how to access user-Profile from url in my php and mysql website
Database connectivity in PHP and Mysql on Server
PHP / MySQL lecture allocation

Advertise
Privacy
Cookies
Terms of Use
Last Updated 1 Mar 2014
Layout: fixed | fluid
Copyright © CodeProject, 1999-2024
All Rights Reserved.

Web01 2.8:2024-04-02:1

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900