469,336 Members | 6,055 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,336 developers. It's quick & easy.

mod_auth_mysql or mysql usernames and passwords?

I'm writing a web app that needs a login page. I'm doing the dev on a
windows box although the final version will go on a Linux box. I can't
find any versions of mod_auth_Mysql precompiled for windows and have no
idea about compiling c.source on windows (or anything to do it with).

Is there a good reason I shouldn't store hashed password in MySQL and
call them from Python scripts instead of using the apache auth module
directly?

Thanks for your time, Marc.

Feb 8 '06 #1
2 1724
<ma*********@googlemail.com> wrote in message
news:11**********************@f14g2000cwb.googlegr oups.com...
Is there a good reason I shouldn't store hashed password in MySQL and
call them from Python scripts instead of using the apache auth module
directly?


That's what I do when writing web apps. One good reason to do this is that
your web app probably needs to offer users the ability to log out. Any
solution using mod_auth_* (regardless of whether the passwords are stored in
MySQL, htpasswd file, LDAP, etc.) has the problem that it uses HTTP
authentication. Most browsers offer no way to log out when using HTTP
authentication, without closing the browser.

Rolling your own login/logout system, or using one provided for you by a web
application framework, offers more flexibility, and enables you to do things
that basic HTTP authentication can't do.

In MySQL, I recommend using the MD5 function to store hashes of passwords.
Don't use the PASSWORD function; this is intended only for use by the MySQL
account system.

Regards,
Bill K.
Feb 8 '06 #2
exactly what i needed to know. thanks MW

Feb 9 '06 #3

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

1 post views Thread by Chris | last post: by
reply views Thread by Colin Prince | last post: by
reply views Thread by Andrew DeFaria | last post: by
1 post views Thread by Anthony Davis | last post: by
1 post views Thread by Richard Huxton | last post: by
2 posts views Thread by Jose.Dr.G | last post: by
reply views Thread by zhenya.tkachenko | last post: by
8 posts views Thread by sathyashrayan | last post: by
reply views Thread by zhoujie | last post: by
reply views Thread by suresh191 | last post: by
reply views Thread by Marylou17 | last post: by
1 post views Thread by Marylou17 | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.