 I just read this article on Computer World about not storing passwords. The argument is that only the hash should be stored and that hash is compared to the one generated when the user enters their password.
http://www.computerworld.com/article/2853896/making-a-hash-of-passwords.html Geeks, making the world a better place |
Not sure what your pointing out. Most developers already know this(or should), and dolphin already does this. Has for many years. https://www.deanbassett.com |
Not sure what your pointing out. Most developers already know this(or should), and dolphin already does this. Has for many years. I have not worked directly with passwords in Dolphin; I know you have. So you are telling me that we only store the hash in the database? I thought Dolphin took the password at sign-up, or password change time, and applied the hash to it and stored the encrypted password in the database. See, it is true that you learn something new all the time :-).
The post is still valuable because of the knowledge of how Dolphin handles passwords. Geeks, making the world a better place |
Dolphin stores a hash. https://www.deanbassett.com |
https://dolphin-techs.com - Skype: Dolphin Techs |
