| From: | Klaus Sonnenleiter <klaus(at)sonnenleiter(dot)com> |
|---|---|
| To: | Tim Ellis <Tim(dot)Ellis(at)gamet(dot)com>, Stefan Fiel <fstefan(at)cable(dot)vol(dot)at> |
| Cc: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: password encryption |
| Date: | 2002-08-22 00:55:19 |
| Message-ID: | 200208212055.19700.klaus@sonnenleiter.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
To protect your passwords effectively, you probably want them encrypted before
they go on the wire, so you will need to put the encryption capability in the
application, not in the database. This way you will only transmit and store
encrypted data. Take a look at cryptix.org for some pretty good Java and Perl
implementations.
On Wednesday 21 August 2002 05:36, Tim Ellis wrote:
> > i like to store passwords for a webapplication in my postgre database.
> >
> > now i'm searching for a way to encrypt the passwords, something like the
> > function password() for mysql.
>
> I always run my passwords through md5sum(), which is an open source
> implementation, and thus seems to've been written in every language out
> there.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David F. Skoll | 2002-08-22 01:40:26 | Re: password encryption |
| Previous Message | Tim Ellis | 2002-08-21 23:20:43 | Re: DB Access Restrictions |