Webmaster World Forum http://www.webmasterworld.com

Page is a not externally linkable
- Code, Content, and Presentation
-- PHP Server Side Scripting
---- if ($pass==$pass2) check not working as expected

amznVibe - 1:13 pm on Nov 23, 2008 (gmt 0)

You should never store the raw password in the db in case you are hacked.

Store the md5 of the password in the db only.

Then when the user submits the password to login,
md5 what they submitted and compare the md5 to what's in the db.

[edited by: amznVibe at 1:14 pm (utc) on Nov. 23, 2008]

Thread source:: http://www.webmasterworld.com/php/3792412.htm
Brought to you by WebmasterWorld: http://www.webmasterworld.com