I asked a question yesterday about password safety… I am new at security… I

Question

0

Editorial Team

Asked: May 14, 20262026-05-14T19:34:15+00:00 2026-05-14T19:34:15+00:00

I asked a question yesterday about password safety… I am new at security… I

0

I asked a question yesterday about password safety…

I am new at security…

I am using a mysql db, and need to store users passwords there. I have been told in answers that hashing and THEN saving the HASHED value of the password is the correct way of doing this.

So basically I want to verify with you guys this is correct now.

It is a classifieds website, and for each classified the user puts, he has to enter a password so that he/she can remove the classified using that password later on (when product is sold for example).

In a file called “put_ad.php” I use the $_POST method to fetch the pass from a form.
Then I hash it and put it into a mysql table.
Then whenever the users wants to delete the ad, I check the entered password by hashing it and comparing the hashed value of the entered passw against the hashed value in the mysql db, right?

BUT, what if I as an admin want to delete a classified, is there a method to “Unhash” the password easily?

sha1 is used currently btw.

some code is very much appreciated.

Thanks

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-14T19:34:16+00:00

Editorial Team

2026-05-14T19:34:16+00:00Added an answer on May 14, 2026 at 7:34 pm

If you are an admin and have written the code you don’t need to know the original users password. As an admin you code in the right for you to do this.

This is the difference between user authentication and user authorisation

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I asked a question yesterday about password safety… I am new at security… I

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply