Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
What is the best practice to check user by login and password? I know two ways, but could not choose most security and right way.
Check in sql like where login = @login and password = @password with using stored procedure
Firstly select user by login and after do password check in code. (C#)
Also what is official standard to check password strength?
Go for first way only
check the user and password in database side procedure only.
Modification to this first encrypt and store encrypted the password store it in database when creating user.
than when checking for user login, comapre this encrypted password only , by seding encrypted password as parameter to the proceudre …
For password stength
Try using googles Google Password Strength API http://www.codeproject.com/KB/ajax/GooglePasswordStrength.aspx