Comments on: Storing passwords securely http://www.thespanner.co.uk/2007/02/06/storing-passwords-securely/ A tool for designers dealing with programmers dealing with designers... Fri, 10 Sep 2010 14:51:42 +0000 http://wordpress.org/?v=2.6.2 By: Gareth Heyes http://www.thespanner.co.uk/2007/02/06/storing-passwords-securely/#comment-1365 Gareth Heyes Tue, 25 Nov 2008 11:29:51 +0000 http://www.thespanner.co.uk/?p=16#comment-1365 @alex If they could read your php code then you have bigger problems but you could store the seed in a apache config variable or maybe use a unique seed per user within the table. @alex

If they could read your php code then you have bigger problems but you could store the seed in a apache config variable or maybe use a unique seed per user within the table.

]]> By: Alex http://www.thespanner.co.uk/2007/02/06/storing-passwords-securely/#comment-1364 Alex Mon, 24 Nov 2008 23:12:51 +0000 http://www.thespanner.co.uk/?p=16#comment-1364 How would you prevent someone from attacking your php code directly. If someone could read what your $seed is, they could do a reverse md5 and find out the password, then login How would you prevent someone from attacking your php code directly. If someone could read what your $seed is, they could do a reverse md5 and find out the password, then login

]]>