Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have stored user passwords in an encrypted format in my database. However, now when user wants to login and tries to put their original password the code always compares the entered (original) password with the encrypted version stored in the database, leading to a failed login.
Please tell me how to compare the entered (original) password with the encrypted password stored in the database.
You should almost certainly be hashing the password rather than using reversible encryption. You may need to do this with a salt too… in which case the correct steps are:
Note the difference between the when you store the hashed password to start with, when you generate a random salt, and when you verify the stored hash, when you use the stored salt.