Re: Looking for Suggestions on Hash Key Creation
- From: Chris Mattern <syscjm@xxxxxxxxxxxxxx>
- Date: Thu, 27 Mar 2008 21:05:27 -0000
On 2008-03-25, jwwest <jwwest@xxxxxxxxx> wrote:
I'm building a CGI eCommerce store and I'm looking for ways to createYou don't. Do it in your server. SSL. HTTPS. Get yourself a
a decent 2 way encryption. Of course in a scripted language, I don't
want my key in the script itself, but would rather store it somewhere
obfuscated such as in a compiled C++ binary. (I know it doesn't help -
much-, but defense in layers)
A .NET programmer friend of mine uses a method that involves
generating a hash from the Volume ID of the hard drive to use as a
key. I like this approach, but am wary of hardware/software changes
that will break my key.
Am I going about this the correct way? Is there a better method for
creating a decently secure 2 way encryption using a scripted language?
Any help is very much appreciated. Thanks.
signed certificate. Anything is playing with fire.
--
Christopher Mattern
NOTICE
Thank you for noticing this new notice
Your noticing it has been noted
And will be reported to the authorities
.
- Follow-Ups:
- Re: Looking for Suggestions on Hash Key Creation
- From: jwwest
- Re: Looking for Suggestions on Hash Key Creation
- References:
- Looking for Suggestions on Hash Key Creation
- From: jwwest
- Looking for Suggestions on Hash Key Creation
- Prev by Date: Audit Scoping document
- Next by Date: Re: Looking for Suggestions on Hash Key Creation
- Previous by thread: Re: Looking for Suggestions on Hash Key Creation
- Next by thread: Re: Looking for Suggestions on Hash Key Creation
- Index(es):
Relevant Pages
|
|
