Hi Andy,
Sorry, I guess I should have explained better.
I was speaking about what comes up on the preview page for the
information.
I wanted the passwords to display as bullets so they could not see
the encrypted text,
nor be able to copy the text and try it in any decryption process if
they happened to get
to that page where the information can be displayed.
Karl
On Dec 22, 2009, at 4:49 PM, Andy Shellam wrote:
Hi Karl,
Yes you are correct. I do not store a plan text password.
Great stuff - so many systems I've seen use plain-text passwords
it's little wonder there's so much data theft.
If you cant read the encrypted text, you cant decrypt it right?
Wrong. There are two-way encryption methods requiring the use of a
common key, and an initialization vector for some protocols - see
the mcrypt library which PHP can use (I had a play around with it
quite recently.)
http://uk2.php.net/manual/en/function.mcrypt-decrypt.php
Regards,
Andy
Karl DeSaulniers
Design Drumm
http://designdrumm.com
