php - How to prevent reuse of password hash by another user -


i need prevent reuse of password hash user, example if user can create hash (knowing password of curse) if gained access database , replace else's hash his, able log in user wondering if adding id of user hash practice, if not, else can do? thank you.

if can substitute credentials in database, and if thing determines access system, then, yes, user can cause system accept whatever password chooses.

this 1 important reason why many production systems ... used within company ... and many of back-side "plumbing" layers of public-facing systems ... not use passwords of sort handle authentication or authorization. instead, use "trusted third-party authority" techniques such ldap (opendirectory) or kerberos. no 1 "whispering magic-words 1 another" @ point.

in scenario, both "authentication" (verifying requesting user is), , "authorization" (establishing can do) not handled logic within systems themselves: these tasks delegated centrally managed corporate authority. there concept of "single sign-on." there no "passwords" steal. if system requires user respond personal-challenge, e.g. enter password part of procedure, central authority (software layer) manages everything: providing challenge, interpreting response, knowing correct response timely given, , forth.

these robust technologies peer-reviewed, trustworthy implementations cross-platform , industry standard. they're comprehensive. when "swipe badge" building every morning, they're unlocks door. can accessed php, and/or whatever web-server service running php application.


Comments

Post a Comment

Popular posts from this blog

IF statement in MySQL trigger -

this query code in mysql trigger. if 1=2 select 'yes'; else select 'no'; end if; but has following error: if '1'='2' select 'yes' error code: 1064. have error in sql syntax; check manual corresponds mysql server version right syntax use near 'if '1'='2' select 'yes'' @ line 1 0.000 sec what solution?
Read more

c++ - What does MSC in "// appease MSC" comments mean? -

i run across // appease msc in c++ comments, e.g. here : const int& array::operator[](int offset) const { int mysize = getitssize(); if (offset >= 0 && offset < getitssize()) return ptype[offset]; throw xboundary(); return ptype[offset]; // appease msc! } what msc stand ? the author means microsoft's compiler, more formally known msvc.
Read more

javascript - Blogger related post gadget image Resize s72-c [ Need Expert Help ] -

i run blogger blog , use follow code javascript code (requires no jquery) show related post labels/categories of post. <script type='text/javascript'> var defaultnoimage=&quot;http://1.bp.blogspot.com/-m72rpguntq0/vuokijudn_i/aaaaaaaaboi/lq18sceunsg/w72/favicon-tik.png&quot;; var maxresults=16; var splittercolor=&quot;#d4eaf2&quot;; var relatedpoststitle=&quot;related posts&quot;; </script> <script type='text/javascript'>//<![cdata[ var relatedtitles = new array(); var relatedtitlesnum = 0; var relatedurls = new array(); var thumburl = new array(); function related_results_labels_thumbs(json) { (var = 0; < json.feed.entry.length; i++) { var entry = json.feed.entry[i]; relatedtitles[relatedtitlesnum] = entry.title.$t; try { thumburl[relatedtitlesnum] = entry.media$thumbnail.url } catch (error) {...
Read more