StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
647651
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
6
CommunityOwnedDate
CreationDate
2009-03-15T11:22:50.907
FavoriteCount
0
LastActivityDate
2010-08-11T20:16:45.460
LastEditDate
2017-05-23T12:25:02.703
LastEditorUserId
-1
OwnerUserId
22674
ParentId
647514
PostTypeId
2
Score
24
ViewCount
0
LastEditorDisplayName
Jacco
text
Body
You should store passwords hashed (and <a href="https://stackoverflow.com/questions/1645161/salt-generation-and-open-source-software/1645190#1645190">properly salted</a>). There is no excuse in the world that is good enough to break this rule. Currently, using <a href="http://www.php.net/crypt" rel="nofollow noreferrer">crypt</a>, with CRYPT_BLOWFISH is the best practice. CRYPT_BLOWFISH in PHP is an implementation of the Bcrypt hash. Bcrypt is based on the Blowfish block cipher. <ul> <li>If your client tries to login, you hash the entered password and compare it to the hash stored in the DB. if they match, access is granted.</li> <li>If your client wants to change the password, they will need to do it trough some little script, that properly hashes the new password and stores it into the DB.</li> <li>If your client wants to recover a password, a new random password should be generated and send to your client. The hash of the new password is stored in the DB</li> <li>If your clients want to look up the current password, they are out of luck. And that is exactly the point of hashing password: the system does not know the password, so it can never be 'looked up'/stolen.</li> </ul> <a href="https://stackoverflow.com/users/1/jeff-atwood">Jeff</a> blogged about it: <a href="http://www.codinghorror.com/blog/archives/000953.html" rel="nofollow noreferrer">You're Probably Storing Passwords Incorrectly</a> If you want to use a standard library, you could take a look at: <a href="http://www.openwall.com/phpass/" rel="nofollow noreferrer">Portable PHP password hashing framework</a> and make sure you use the CRYPT_BLOWFISH algorithm. (Generally speaking, messing around with the records in your database directly is asking for trouble. Many people -including very experienced DB administrators- have found that out the hard way.)
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POWhat is the best way to implement 2-way encryption with PHP?
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USCommunity
UserOwnerUserId
1. USJacco
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. POWhat is the best way to implement 2-way encryption with PHP?
 singulars
 PostTypePostTypeId
 PTQuestion
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.