yjchen
09-16-2007, 13:40
Admin password is plain-text in users.ini now. it's not secure. I think password maybe encrypted in file that like passwd on Unix-like.
I think md5 algorithm is a good option.
my pesudo code:
name=cl_name
_pw=cl_password
if (md5(_pw) == find_passwd(name))
{
auth
}
else
{
non-auth
}
I think md5 algorithm is a good option.
my pesudo code:
name=cl_name
_pw=cl_password
if (md5(_pw) == find_passwd(name))
{
auth
}
else
{
non-auth
}