ansaurus

Question

Better way save password in mysql which can be decrypted also using php

Answer 1

+13 A:

Don't do that...

First, use something better than md5. Then create a way to "reset" the password, but never a way to actually retreive the password from the db...

That will make your app less secure, but maybe even worse; you and your users will have a problem if your data gets stolen! Someone is going to have a database with usernames and passwords of all your users!

code-zoop 2010-01-25 09:26:30

+1 for password reset. Is there something wrong with md5() and if it is, what are examples of something better? I'm genuinely interested myself.

Pekka 2010-01-25 09:28:40

@Pekka: Have a read of the WP article: http://en.wikipedia.org/wiki/Md5 MD5 is a great means of hashing files for integrity checks and such, but no longer an up-to-date cryptographic tool.

T.J. Crowder 2010-01-25 09:30:58

@Pekka: This: http://en.wikipedia.org/wiki/MD5#Collision_vulnerability Something better: check out SHA-512, for a start.

Piskvor 2010-01-25 09:32:13

@T.J. Crowder and @Piskvor: Good stuff, thank you.

Pekka 2010-01-25 09:43:37

Answer 2

+4 A:

Encrypting instead of hashing means that you have to store the decrypt key, which means reduced security for your app. Reset their password, and send them the new one.

Ignacio Vazquez-Abrams 2010-01-25 09:26:33

The only right way to go. The user's password is none of our (site owners' and programmers') business.

Pekka 2010-01-25 09:29:29

Answer 3

A:

how about crypt() or openssl?

ghostdog74 2010-01-25 09:27:54

Answer 4

+1 A:

Don't do that, it will compromise your security! The whole idea of one way encryption is that if your database is hacked you won't face the problem that all your users passwords will be known alongside with their email addresses!

tharkun 2010-01-25 09:27:54

Answer 5

A:

It's not safe to do that you better can create a way to reset the password

x4tje 2010-01-25 09:29:13

Why post a redundant answer minutes after code-zoop's? Just vote his/hers up.

T.J. Crowder 2010-01-25 09:33:05

Answer 6

A:

If you're running an internal private site with no security issues, just store passwords with XOR 0xAD each byte. Otherwise, reset is the only option.

alemjerus 2010-01-25 09:36:53

Answer 7

A:

create dynamic salts ( 2, one 'permanent' to mix with the password before hashing / crypting, other one dynamic, changing every time user logs in );
```
$dynamicSalt = '';
for ($i = 0; $i < 8; $i++) 
{    
    $dynamicSalt .= chr(rand(33, 126)); 
}
```
never save passwords in any manner that can help you 'decode' them later, it's not up to you to retrieve original password but to let users reset it

If you really need to save the original passwords, create a database account with WRITE permissions only and store it in some other database ( on another server ? ).

Kemo 2010-01-25 09:57:34

Answer 8

A:

It is not possible to store the password in such a way that it is still recoverable without either

1) storing the decryption key in your code/data (which rather defeats the purpose of hashing/encrypting the password)

2) encrypting the password using public/private key encryption the routing the recovery through som sort of semi-manual process where the password can be recovered.

The simplest solution is to require your users to provide/maintain a current email address and rely on the security of that to provide a new password on request.

C.

symcbean 2010-01-25 10:02:24

ansaurus

tags:

views:

answers:

Better way save password in mysql which can be decrypted also using php

related questions