Home » Questions » passwords

passwords

Passwords or Pass Phrases are a string that is used to help lockout people who do not know this string from using a persons account or computer. They have almost always been used since computers were first connected with each other as a way of making sure that each user had the ability to know that their account on the computer or network was not going to be taken over by a peer worker who had something against them. It also makes sure that only the person who knows a person’s username and password can get into their account and change things that they have access to.

On websites and other web-based services passwords are used to make sure that anyone trying to connect to the site or service is who they say they are. In addition to a username which may be a another string or the person’s email, it makes the server that the person who is trying to login(gain authorization to the site or service) more likely to trust them and allow them to gain access to it.

Storing a password should never be done in plain text, this means that the passwords are stored exactly as they were typed by the user. You should use a cryptographic hash function such as bcrypt wikipedia article on bcrypt. It is available in almost every web programming langauge, and thus is the best way to store a users password since it uses one-way encryption which means that no one can get the password back without first attempting to guess it repeatedly, also known as “bruteforcing”.

NOTE: The content of this tag was originally posted at StackOverflow.com

0 votes
0 answers
11k views
0 votes
75k views
Every now and then I hear the advice “Use bcrypt for storing passwords in PHP, bcrypt rules...
  • Laurie asked 14 years ago
  • last active 12 years ago
1 vote
78k views
It is currently said that MD5 is partially unsafe. Taking this into consideration, I’d like...
  • Tina asked 16 years ago
  • last active 9 years ago
Showing 3 results