Login and Password with SALT

Hi,

I want to create my password with a salt word, like in wordpress.

But where in my root do I store that salt word and how can i get access to it in the login, register and send password page?

Cheers,
Denis

when running the security assist wizard, select to use either the HASH, CRYPT, or RIJNDAEL encryption types, those encryption types support a salt string.

you can enter your SALT String in the webassist/security_assist/wa_securitykey.php file.

Hi Jason,

first of all, thanks for that great support!

Is there a way to get it work without the wizard? I dont like using wizards much.

Is there maybe any tutorial?

Cheers,
Denis

it is possible to do with out the wizard, but it is fairly complex. There is not a tutorial for it.

your best bet would be to create the pages using the wizard, then examine how the behaviors are configured on the pages that are created.

hmm, ok.
so when I choose CRYPT. and set my own salt into wa_securitykey.php.
when I dont use the wizard, will it also use my own salt in wa_securitykey.php?
cheers

either way you will need to edit the wa_securitykey.php file to enter your salt string.

It is allready there and I filled it with my string.

so I dont have anything else to just to choose the CRYPT from the server behavior and it will automaticly tahe my salt from the wa_securitykey.php?

How many letters does CRYPT enctyption need in my database field?

you should double check the salt string after adding the server behavior.

crypt creates a 13 character string.

Oh, only 13 charachters?

what do you mean with

  you should double check the salt string after adding the server behavior  

?

I created a 120 charachter salt string. and put it into the file wa_securitykey.php.
can you please explain?

after adding the server behavior, double check the wa_securitykey.php file to ensure the salt string is not over written.