Dan Tappin <mailto:dan@xxxxxxxxxx> on Wednesday, March 02, 2005 7:32 AM said: > The best way is to not store the password at all. > > Store a hash of the password like this: > > INSERT INTO users SET pass = MD5('password'); > > Now not knowing how you authenticate those passwords this might not > work. > > If it's an internal web page via PHP all you do is MD5 the users > supplied password and compare to you DB. But that doesn't help in this situation because the OP is not referring to passwords for users of the website but rather the password(s) for MySQL so that the application can access the db. Chris. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
