473,473 Members | 1,713 Online
Bytes | Software Development & Data Engineering Community
Create Post

Home Posts Topics Members FAQ

password hash

It seems like there is no built in procedure for making a password hash in
SQL2000. Am I wrong.
Do I have to make it from scratch myself or is there samples out there?

/Jens Ulrik

Jul 20 '05 #1
3 2433

"Jens U. K." <1j**@3bsopatent4.dk> wrote in message
news:i3****************@news.get2net.dk...
It seems like there is no built in procedure for making a password hash in
SQL2000. Am I wrong.
Do I have to make it from scratch myself or is there samples out there?

/Jens Ulrik


That's correct - the usual solution is to encrypt/decrypt in the client
application using the Win32 CrpytoAPI, or some other suitable API, then
store only the encrypted password in the database:

http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=22

Simon
Jul 20 '05 #2
"Simon Hayes" <sq*@hayes.ch> wrote in message
news:41**********@news.bluewin.ch...

"Jens U. K." <1j**@3bsopatent4.dk> wrote in message
news:i3****************@news.get2net.dk...
It seems like there is no built in procedure for making a password hash
in SQL2000. Am I wrong.
Do I have to make it from scratch myself or is there samples out there?

/Jens Ulrik


That's correct - the usual solution is to encrypt/decrypt in the client
application using the Win32 CrpytoAPI, or some other suitable API, then
store only the encrypted password in the database:


Hmm, it would have so easy with a stored procedure. Only problem is that
neither the SQL-server nor the HTTP-server are in my possesion. So
unfortunately I do not have access to "whatever" API I want :-( But as I
recall the provider have ASP.NET and I think there is some encryption
functions in there...

/Jens Ulrik

Jul 20 '05 #3
The asp.net System.Web.Security.FormsAuthentication class contains a static
method for hashing passwords that you may find helpful:

string password = "god";
string passwordFormat = "sha1";

string encryptedPassword =
FormsAuthentication.HashPasswordForStoringInConfig File(password,passwordFormat);
"Jens U. K." <1j**@3bsopatent4.dk> wrote in message
news:3b*****************@news.get2net.dk...
"Simon Hayes" <sq*@hayes.ch> wrote in message
news:41**********@news.bluewin.ch...

"Jens U. K." <1j**@3bsopatent4.dk> wrote in message
news:i3****************@news.get2net.dk...
It seems like there is no built in procedure for making a password hash
in SQL2000. Am I wrong.
Do I have to make it from scratch myself or is there samples out there?

/Jens Ulrik


That's correct - the usual solution is to encrypt/decrypt in the client
application using the Win32 CrpytoAPI, or some other suitable API, then
store only the encrypted password in the database:


Hmm, it would have so easy with a stored procedure. Only problem is that
neither the SQL-server nor the HTTP-server are in my possesion. So
unfortunately I do not have access to "whatever" API I want :-( But as I
recall the provider have ASP.NET and I think there is some encryption
functions in there...

/Jens Ulrik

Jul 20 '05 #4
Create Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics
14
General Password questions
by: Todd Johnson | last post by:
I am creating a dialog in wxPython for log in purposes. Basically when the user clicks the ok button, the dialog box saves the user name and password as class attributes. Then as long as the...
Latest Bytes
0
mysql password() & unix crypt password...
by: aars | last post by:
Hello all, I am creating a user administration system where system administrator can activate services for a user, like webspace, a mail account or a subdomain. I now want to create a...
Latest Bytes
27
Lost password + MD5 ?
by: frizzle | last post by:
Hi there, I've read in a few places that you should *never* store original passwords in a mySQL DB. Now i wonder if you encrypt it (with MD5 ?), how should i create a lost password function,...
Latest Bytes
7
how password is stored and check the authentication??
by: jrefactors | last post by:
I want to ask how password is stored and how to check the authentication? I have heard password is never encrypted and decrypted, but it is hashed. For example, consider a simple email logon...
Latest Bytes
36
Send password over TCP connection
by: dcrespo | last post by:
Hi all, I have a program that serves client programs. The server has a login password, which has to be used by each client for logging in. So, when the client connects, it sends a string with a...
Latest Bytes
2
password hash
by: Phil Townsend | last post by:
I have been asked to rewrite some apps that contain databases of username and passwords to store the passwords as hashes. Getting the data into a hash format is no problem. however, how do I go...
Latest Bytes
4
one way password encryption
by: PJones | last post by:
I am looking for the best way to one way encrypt a password for storage in a database using (asp.net / vb.net) basically I need some functions or examples that I can freely use in a commercial...
Latest Bytes
26
Salt in encrypted password in pg_shadow
by: David Garamond | last post by:
I read that the password hash in pg_shadow is salted with username. Is this still the case? If so, since probably 99% of all PostgreSQL has "postgres" as the superuser name, wouldn't it be better...
Latest Bytes
21
protecting password
by: solomon_13000 | last post by:
I am using ms access database and asp 3.0 as my front end. In my database there is a table called account and a field called password. How do I protect the password stored in the database.
Latest Bytes
3
How to use GET method to encrypted the password to transfer?
by: phforum | last post by:
I have no ideas to encrypt the user input password from the text box.....
Latest Bytes
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
Latest Bytes
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
Latest Bytes
0
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
Latest Bytes
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Latest Bytes
1
isladogs
Access Europe - Using VBA to create a class based on a table - Wed 1 May
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new...
Latest Bytes
0
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Latest Bytes
0
transfer the data from one system to another through ip address
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated ...
Latest Bytes
1
muto222
php
by: muto222 | last post by:
How can i add a mobile payment intergratation into php mysql website.
Latest Bytes
0
bsmnconsultancy
Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence...
Latest Bytes

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us