Search:

Got it. Now one last question about salt.

I'm thinking of just generating a random salt per user, that means I just store that salt in the DB with the password, right?

Is sha512 too much for a member site or should that be considered?

Ok. So are you saying that once the user provides the correct login & password, you then set a $_SESSION['random'] & then use this as $userID so that you don't have to use their password for stuff...

WOW! That is why I love this site! I am developing it locally & this is exactly what I needed!

Thanks.

I'm having an issue with the following code running through the validator.


<input type="text" id="uname" name="uname" value="<?php print "$uname"; ?>" size="30" />

It gives an error about the...

Which Doctype would you guys say is best for validation & usage?

Ok. Thanks to both of you.

Ok. Sweet, thank you everyone for you help on this. This is exactly what I was looking for!

Another question I have is, when you say you check the session variable is set and is the correct value. Are you saying that you do something like this to check the user is logged in?



...

Thanks Dex. Does anyone know of a way of doing this without starting a session? I'd like to only start a session if the users are logged in, this will cut down on lurkers starting sessions (I don't...

Ok. So would this be secure enough, but not too much:

1) Enter a secret question & answer.
2) When they forget password and/or username ask for email & secret question
3) Then then send them a...

Money...thanks for posting this!

There are a few forgot password scripts on the web. My question is what do you guys recommend as one of the better methods for password recovery?

Meaning, do you recommend, just sending it to the...

If 1 fails, do you let them know that they are using the wrong username? And if you let them know this, is this a security issue to let hackers know to try a different username? Or does that matter?

How can I remember what was clicked when:

1) the user is browsing
2) clicks a restricted (members only) page
3) logs in
4) I want them to go back to the restricted page if login is successful
...

THANKS MAN! That 1st link was on the money! Cheers!

I'm looking for a function that will:

1. count the length of text
2. if the text is longer than a certain length, truncate it to a specified length
3. Display the shortened form, with ...Read...

I have a random line that appears as a border (only on the same 2 sides) on any picture that I use as a header or category header when you increase/decrease the zoom in & zoom out.

Does anyone...

Does anyone know of any places that can help me with the look of my website & how I can improve the look?

Or is it a trial & error thing where I just have to keep painting on the canvas until I'm...

Sorry about that. The first file has the variable set.



id = "1";

...

<a href="results.php?id=$id">Click</a>

I'm having an issue that I can't seem to resolve.

In test.php I have:


<a href="results.php?id=$id">Click</a>

Then I click the link to results.php with the following code.

Found a great solution:

http://mattsnider.com/css/css-string-truncation-with-ellipsis/

I've been searching for a way to emulate text overflow in firefox with ellipses & have not come across any on google.

Does anyone know of a good way to handle this?

Thanks

Wow, just read about MD5 collisions. I saw a couple of recommendations of how to still use MD5 & make a password more secure. What would you recommend?

I'm new & I certainly know very little about security. So, should we not store md5 hashed password? If not, then how should you store the passwords?

Thanks