symmetric and keys

From: cod3r (cod3r@email.it)
Date: 01/02/03

Next message: Dana Mor: "how to change the web.config authorization section"
Previous message: Ken: "Re: Simple Encryption/Decryption"
Next in thread: Michael Giagnocavo: "Re: symmetric and keys"
Reply: Michael Giagnocavo: "Re: symmetric and keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "cod3r" <cod3r@email.it>
Date: Thu, 2 Jan 2003 15:44:00 +0100

if i use a symmetric algorithm to, for example, encrypt my user's password,
how can
i keep my key (needed to decrypt password) shadow? if i save it in my db,
and a malicious
force it, it got my key too, and encryption is useless...

thx
cod3r

Next message: Dana Mor: "how to change the web.config authorization section"
Previous message: Ken: "Re: Simple Encryption/Decryption"
Next in thread: Michael Giagnocavo: "Re: symmetric and keys"
Reply: Michael Giagnocavo: "Re: symmetric and keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Linux System Users Login/Password?
... So far I've managed to pull all of the shadow password strings out and into a database, but is there any way of 'matching' the encrypted strings if you are given the plain text version, like with md5? ... PHP has a function named 'crypt' that will encrypt strings in the same way the password is encrypted into the password file. ... Do you really want to pull all the shadow entries into a database? ...
(comp.lang.php)
Re: PHP Auth
... > shadow, crypt etc etc etc. and am Still stuck on one point. ... You encrypt the anwser that your user suplied and compair that to the ... encipted password. ...
(freebsd-questions)