Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

› WebAssist Forums › Data Bridge › SecurityAssist › Why Encrypt passwords - Decrypted ?

Why Encrypt passwords - Decrypted ?

Thread began 8/02/2011 8:38 am by un33k9309513 | Last modified 8/04/2011 8:06 am by un33k9309513 | 5257 views | 8 replies

8/02/2011 1:22 pmJason ByrnesWebAssist

that's a very broad subject.

technically, SHA1 encryption is a one way encryption method, meaning that it is not decrypt able.
SHA-1

but in the world of security there are always people who will try to break into anything.

the use of encryption is not really to protect the data if someone breaks into your MySQL server and steals the data , you have bigger problems if that happens, it is to protect the data from being sniffed while being passed from the client browser to your server when the login page is posted, especially if your are not using an SSL layer.

SHA1 is only one encryption method offer by security assist, others such as crypt are a little more secure, they require a salt string to be used when encrypting or decrypting the data, if they salt string is not known, the data will not be able to be decrypted.

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.