Ziggy54354 Posted February 13, 2008 Posted February 13, 2008 Hi guys, im doing a project on web access security and im pretty much a newbie to both php and html. My current setup goes like this. I use an html form which takes a password and then passes it to another pages which uses php and does an md5 hash on the password and stores it in a database(txt based) when a user creates an account. The problem with this though is the password is transfered as cleartext before it gets hashed so people sniffing the line could pick it up. Is there a way i could encrypt the password on the clientside before it is sent server side to be stored into the db?? As a note, i can't use SSL which is pretty dumb. Share this post Link to post Share on other sites More sharing options...
NCC10281982B Posted February 13, 2008 Posted February 13, 2008 you could have the page with the text boxes be php and put the hashing functions in there. try looking around php.net Also why can't you use ssl? Share this post Link to post Share on other sites More sharing options...
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now