Re: chr() and strconv() do not work consistently

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "Dave O." <nobody@xxxxxxxxxxx>
Date: Tue, 27 Oct 2009 10:57:56 -0000

Perhaps a different approach would help. I guess that you are storing
encrypted password in your login table if this is so then it's not the most
secure method. The preferred way is to create a hash code from the password
and store that, then on login create a hash code of what's entered and
compare the 2.

As a hash code cannot be reversed to derive the original text this is far
more secure. If you are not familiar with hash codes they take a string and
do some arcane maths dependant on the ASCII values and their positions (so
the same letters in a different order produce a different result).

If you are dubious about the claim of impossibility of reversal consider a
CRC which is a sort of hash code, you may have several K of data expressed
as a single long value which plainly cannot be reversed to get the original
back.

Regards

Dave O.

"bob" <nospam> wrote in message
news:e18IBCsVKHA.2340@xxxxxxxxxxxxxxxxxxxxxxx

Hi Bob Butler,

I have a MySQL table (login table).
The table has 2 varchar columns
(name and password) that hold encrypted data.
The table from my computer can not be read
on another computer. Becouse my encryption
process produces inconsisten data.

The data come from byte array like this :
151 50 193 46 242 171 73 145 12 102 119 183 253 144 32
Before I store it to the table, I convert it
using StrConv(b(), vbUnicode). The result (ascii list) :
151 50 193 46 242 171 73 145 12 102 119 183 253 144 32

But StrConv() produces different result on anohter computer :
63 50 65 46 111 -32287 73 -32411 12 102 119 -32443 121 63 32

I tried to replace StrConv() with chr() but it did not help.
chr(151), chr(242) and chr(145) produced ascii 0.

I am finding strconv() and chr() problem.

Regards,
Bob

*** Sent via Developersdex http://www.developersdex.com ***

References:
- chr() and strconv() do not work consistently
  - From: bob
- Re: chr() and strconv() do not work consistently
  - From: bob

Prev by Date: Dabase...
Next by Date: Re: DATA CONNECTIVITY
Previous by thread: Re: chr() and strconv() do not work consistently
Next by thread: Re: chr() and strconv() do not work consistently
Index(es):
- Date
- Thread

Relevant Pages

Re: Password Security
... so really doesnt need encryption. ... hacker has used a packet sniffer to get hold of a login packet. ... through our data server defences. ...
(microsoft.public.win32.programmer.networks)
[VulnWatch] defeating Lotus Sametime "encryption"
... clients use RC2 to encrypt the password, ... the key along with the login packet allowing an attacker to decrypt the ... For example, Lotus Sametime provides encryption, logging, ... 00 -- length of opaque for auth data ...
(VulnWatch)
[Full-Disclosure] defeating Lotus Sametime "encryption"
... clients use RC2 to encrypt the password, ... the key along with the login packet allowing an attacker to decrypt the ... For example, Lotus Sametime provides encryption, logging, ... 00 -- length of opaque for auth data ...
(Full-Disclosure)
defeating Lotus Sametime "encryption"
... clients use RC2 to encrypt the password, ... the key along with the login packet allowing an attacker to decrypt the ... For example, Lotus Sametime provides encryption, logging, ... 00 -- length of opaque for auth data ...
(Full-Disclosure)
Re: nooB PhP login using MySQL
... The process is to take the supplied username and password and do a ... database query to see if there is a row containing that combination. ... commonly used method for login encryption? ...
(comp.lang.php)