Quote:
Originally Posted by Kinvig
Not everyone uses the same methods to encrypt.
sha1 is pretty robust. I normally hash the password with another piece of data, then hash the hashed value for good measure.
|
the normal way is to hash the username & password together, well thats nix way from what i remember
i somtimes hash it with the IP address & session_id if i want a temporary password, many diffrent ways
passwords in DB are usualy not done with a master seed though, if you loose that then you are stuffed