This content has been marked as final.
Show 6 replies
-
1. Re: Password Encryption
2JZ Feb 5, 2009 5:26 PM (in response to rtalton)One simple way is to call a php's encription. Here is mine.
public function getEncryptionMD5( $MyString )
{
return md5( $MyString );
} -
2. Re: Password Encryption
rtalton Feb 5, 2009 5:40 PM (in response to 2JZ)No, I cannot use PHP--that's what I'm moving away from.
This will all be done using a .NET web service.
Thanks anyway. -
3. Re: Password Encryption
ntsiii Feb 6, 2009 9:17 AM (in response to rtalton)How about an MD5 hash? There is an AS library for it. A hash is not technically an encryption, though, as I have learned since posting this example.
http://www.cflex.net/showFileDetails.cfm?ObjectID=556 -
4. Re: Password Encryption
rtalton Feb 6, 2009 9:47 AM (in response to ntsiii)Thanks Tracy.
I downloaded your samples and am going through the asp login page. Although I will be using C# and a web service, this is a brilliant example for me to get started with. Yes, MD5 is what I was using with PHP so it will work well for me. I'm assuming that the ActionScript MD5 encrypt function will not return exactly the same result as the PHP MD5 version, so my users may have to update their passwords?
Anyway, of particular interest to me was the aspx page's line:
FormsAuthentication.HashPasswordForStoringInConfigFile("mypassword", "MD5")
Since I'm new to .NET, this was a revelation. I'll be looking at this .NET functionality more closely to see how to compare the info sent in from the HTTPService to the stored password.
So, thanks again! -
5. Re: Password Encryption
ntsiii Feb 9, 2009 10:13 AM (in response to rtalton)Actually, I would expect any MD5 implementation to behave identically.
Certainly the AS and .net implementations worked together. -
6. Re: Password Encryption
levancho Feb 9, 2009 10:51 AM (in response to rtalton)all md5 implementations MUST return same hash for same given String, if they dont then there is something wrong,
maybe your php one uses salting or something more than just md5 ing the string?


