|
I've taken a look at the StackOverflow question, "Password Encryption / Database Layer AES or App Layer AES," and I'd like to effectively and efficiently hash my passwords on registration (web app) and then be able to check they are correct on login. ...
Started by Chris Laythorpe on
, 9 posts
by 9 people.
Answer Snippets (Read the full thread at stackoverflow):
Over in, append the random salt and then check if... .
I suppose we'll see a whole slew of misguided questions about hashing, encryption, etc.
To death all over the Internet; not just on Stack Overflow; seriously - a simple web search ought.
|
|
EDIT: Can anybody actually answer the question? Thanks, I don't need no audit trail, I WILL know all the passwords and users can't change them and I will continue to do so.
This is not for hacking!
We recently migrated away from a old and rusty Linux/...
Answer Snippets (Read the full thread at serverfault):
Don't enable "reversible encryption" - you need....
That seems like a decent compromise between security and ease of support with a moderately complex password would be nearly impossible to discover.
Need to know their password.
|
|
I am using the twitter API to integrate twitter with my blog's commenting system. The problem with the twitter API and many other web APIs out there is that they require the user's username and password to do anything useful. I don't want to deal with...
Started by dsims on
, 10 posts
by 10 people.
Answer Snippets (Read the full thread at stackoverflow):
This avoids sending the password in the clear and the user's encrypted reply they could decrypt the reply and obtain the username/password of the user two parties....
DES in javascript with the key to encrypt the password.
|
Ask your Facebook Friends
|
I'm looking for the best way to send passwords over the internet safely. Options I've looked at are PGP and encrypted RAR files. There are no real parameters other than getting from point a to point b over the internets without too much risk.
Started by Jim B on
, 10 posts
by 9 people.
Answer Snippets (Read the full thread at serverfault):
If you are on windows, you might want to listen to Security Now 201 captured the whole file they....
Basically, it means that you encrypt the data (password in your case) with other person's the password immediately.
Is good.
|
|
Possible Duplicate:
Will it ever be possible to run all web traffic via HTTPS?
Why is the concept of having secure communication using encryption tied to confirming the website's identity in https? Wouldn't all users of the web benefit from even having...
Started by MikeN on
, 8 posts
by 8 people.
Answer Snippets (Read the full thread at stackoverflow):
If something isn't sensitive or important, security....
And frankly I don't think the biggest security issues are people snooping on plain of:
Security is used to protect things that are sensitive/important.
Of security either.
|
|
When a site emails your old password, as opposed to requiring you to reset it on the site, I'm wondering what that implies about their security measures.
Does this mean that they store the password in plain text for their own convenience or could they...
Started by S. Michaels on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at superuser):
Encrypting the password means a cracker would have to find the DB and the encryption key, but since the key ....
They might be using encryption when the password is stored in the DB but they shouldn't be storing it is.
|
|
No Wifi Encryption, any software to do the job? Hi
When I use Wifi at my school, they haven't implemented any sort of encryption for some reason. No WEP, no WPA, nothing...just simple access with no password.
Obviously this a no-no, but since I can't ...
Answer Snippets (Read the full thread at dslreports):
Guess I need to look of 'http' whenever possible to get maximum ....
So even software to encrypt traffic would be pointless.
Makes sense.
I can't seem to find a way to set up a Windows machine to encrypt be.
To a specific port as a proxy.
|
|
I'm looking for a simple way to encrypt my soap communication in my C# Web-Service.
I was looking into WSE 3.0 but it seems Microsoft dropped support for it, and therefore it's not straightforward to use.
It seems WCF could've been an option but I prefer...
Started by dberlin on
, 10 posts
by 8 people.
Answer Snippets (Read the full thread at stackoverflow):
I would like to ensure encryption in my web-service and not rely on the IIS the best bet is to either case-by-case encrypt portions of the SOAP messages (after all, you may this to compress the webservices and it ....
That it can run https.
|
|
I would like to encrypt my disk, as while I don't have anything illegal, there are some things I would rather not be interrogated about or cause confiscation of my belongings while going through customs in the US or other countries.
I have 1 300gb hdd...
Started by Bill Grey on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at superuser):
Or you could encrypt the files and put them on a service like MS sky drive, or whateverThe best way would be not to encrypt your whole drive, but simply create a volume on the drive encrypted with it for security....
The internet.
|
|
I've heard that one can encrypt data using drawings of the Mandlebrot set, and that this encryption algorithm is quantum-safe (can't be broken with a quantum computer, unlike many commonly-used algorithms). I looked around on Google for more information...
Started by Imagist on
, 7 posts
by 7 people.
Answer Snippets (Read the full thread at stackoverflow):
All you're changing is ....
This translates the security of the message from a mathematical one ;)
There isn't an encryption system out there that is "quantum computer proof", let alone normal computer proof.
To encrypt the message.
|
