Password hashing using PHP and MySQL

[dipdude]

This article will explain what a hash is, why you want to use them instead of storing real passwords in your applications, and give you some examples of how to implement password hashing in PHP and MySQL.

PHP Security Consortium: Password Hashing

The article is pretty good, but it fails to actually explain anything about MD5 or SHA1. What's the difference between the two? Which should I use? Are there other encryption algorithms? These are important questions. If you check the PHP documentation for the md5 function ( PHP: md5 - Manual ), you'll see a long and lively debate about whether or not MD5 is adequate.

PHP: md5 - Manual

 

[MAGNeT]

thks for it dip.....reps added