MM
On Fri, Feb 4, 2011 at 6:35 AM, AD7six <andydawson76@gmail.com> wrote:
FWIW that's a hideous practice. don't mail passwords.
On Feb 4, 12:21 pm, Matt Murphy <mattyh...@gmail.com> wrote:
> It is never necessary to decrypt a password -- both from a technical
> standpoint and from a security standpoint. If you need to check an entered
> password vs the stored has, you hash the entered password and compare with
> the stored hash. If your user forgets theirs, simply generate a new one,
> email it to them
--
Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org
Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions.
To unsubscribe from this group, send email to
cake-php+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php
--
Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org
Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions.
To unsubscribe from this group, send email to
cake-php+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php
No comments:
Post a Comment