Just so we're all clear, the preference is for a one-way transformation on
the passwords (hash rather than reversable block or stream cipher
encryption).
That way, the passwords can never be unencrypted - after all, you only need
to see if they match. That means the password is only in "clear text" in the
user's head and nowhere else (of course we all know the dumb user will
probably tape a sticky note with the password to his monitor...).
Also, a list of hashed passwords can be suseptable to dictionary attacks,
which is why you should also enforce strong passwords (include
caps/lowercase + non-alphanumeric characters, try to avoid common words, and
enforce a decent minimum length).
-Rob Teixeira [MVP]
"Cor" <no*@non.com> wrote in message
news:%2***************@TK2MSFTNGP11.phx.gbl...
Hi Newbie,
Very roughly as I do it.
\\\
Dim conn As OleDb.OleDbConnection = New OleDb.OleDbConnection
conn.ConnectionString = "Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=C:\test1\db.mdb;User Id=admin;Password=;"
Dim cmd As New OleDb.OleDbCommand("Select * from tbl1 Where id='" &
txtId.text & "'",conn)
Dim da As OleDb.OleDbDataAdapter = New OleDb.OleDbDataAdapter(cmd)
Dim ds As DataSet = New DataSet
da.Fill(ds)
conn.Close()
(here some encryptingcode)
if myencryptedpassword = ds.tables(0).rows(0).item('mypasword').tostring
then
return dialogresult.ok
else
do something else
end if
////
I hope this helps?
Cor