Announcement

**Koobi** · Mon 9 Aug '04, 11:01am

How about mcrypt?
What encryption function you want to use really depends on what you want to use it for, though

**Mansour** · Tue 10 Aug '04, 2:51am

"This is an interface to the mcrypt library" and need to install it in the server. Is there any built-in function.

I want to send some information from one server to another, the sensitive values is encrypted like password, but I want to encrypt all the variable and its value and then send it (to increase the security)

Thanks Koobi

**Floris** · Tue 10 Aug '04, 2:54am

http://uk.php.net/md5

This is 'hash' and not encrypt, so you can't decrypt it, but it is great for adding security.

**Mansour** · Tue 10 Aug '04, 8:55am

Thnks Floris, yes we can not decrypt hash, so MD5 didn't help me

**Symen_4ab** · Tue 10 Aug '04, 11:14am

I personally would use a database for this kind of things...
Normally, only the admin should be able to access phpmyadmin/sql console..

a row with the "encrypted" text (well, it's plaintext in the database) and another one with the password to decrypt/access it (why not md5 it

)

**Koobi** · Tue 10 Aug '04, 11:28am

Originally posted by Floris

http://uk.php.net/md5

This is 'hash' and not encrypt, so you can't decrypt it,

That's what I thought until someone told me that there's a tool (ugh, another one of those tools) out there that lets you retrieve the original data of the hash. Of course this isn't legal but if someone want's to mess with your data, they wouldn't care about legality issues.

**MrNase** · Tue 10 Aug '04, 12:15pm

Originally posted by Koobi

That's what I thought until someone told me that there's a tool (ugh, another one of those tools) out there that lets you retrieve the original data of the hash. Of course this isn't legal but if someone want's to mess with your data, they wouldn't care about legality issues.

Yes that's true. I tried that with my own password but it took me ages.

**Chroder** · Tue 10 Aug '04, 1:10pm

Originally posted by Koobi

That's what I thought until someone told me that there's a tool (ugh, another one of those tools) out there that lets you retrieve the original data of the hash. Of course this isn't legal but if someone want's to mess with your data, they wouldn't care about legality issues.

But that isn't decrypting, thats cracking. There is no reverse algorithm for a hash as there is for an encryption.

**Koobi** · Wed 11 Aug '04, 9:13pm

Originally posted by Chroder

But that isn't decrypting, thats cracking. There is no reverse algorithm for a hash as there is for an encryption.

Yeah, that it is. Sorry, terminology mess up heh heh
I just wanted to let Mansour know that MD5 is not really safe either unfortunately

**Zachery** · Wed 11 Aug '04, 9:41pm

Its nearly impossible to get the exact data from an MD5 hash, if you really want to hash that data securly take a look at how vBulletin does it

Announcement

How to Encrypt string ?

How to Encrypt string ?

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment