José León Serna wrote:
El mar, 11-02-2003 a las 18:49, Chris Hewitt escribió:Have you considered using on one-way MD5 hash instead?
That's how I'm doing it now, but I would like to allow the user to change it's password, and I want to encrypt it, of course ;-)
Yes.
The procedure here will be to: -Encrypt the new password with javascript on the client's browser using RSA and the public key
Or it could be an MD5 hash.
Current password hash compared with what is in the database, if OK then store new password hash.-Decode the entered password on the server using the private key
I'm just suggesting that its possible to use MD5 and not a two-way encryption/decryption. I have no experience of using RSA, I'd have to leave it to others to help.
Regards
Chris
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
