Re: [cgiapp] problem with form-data (get/post)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cgiapp] problem with form-data (get/post)

Subject: Re: [cgiapp] problem with form-data (get/post)
Date: Fri, 18 Jun 2004 08:33:48 -0500
From: "Geoffrey G. Hankerson" <suppressed>

My understanding is that this kind of encryption uses a 
"salt". In other words you add a string (salt) to the user's password
and in your application (typically a database) 
you store the encrypted concatenation of the password and the salt.  So
the weak point is the salt string. If someone can brute force find your
salt string you are in trouble. 

>>> <suppressed> 06/18/04 06:45 AM >>>




How are you running perl in the browser (perlscript)?

Brian
--
Brian T. Wightman                suppressed
Global Data Management          http://pdm.cg.jci.com/
Johnson Controls, Controls Group          (414) 524-4025


|---------+---------------------------->
|         |           suppressed   |
|         |                            |
|         |           06/18/2004 04:08 |
|         |           AM               |
|         |                            |
|---------+---------------------------->
 
>--------------------------------------------------------------------------------------------------------------------------------------------------|
  |                                                                     
                                                                        
   |
  |       To:       suppressed                            
                                                                        
   |
  |       cc:                                                           
                                                                        
   |
  |       Subject:  Re: [cgiapp] problem with form-data (get/post)      
                                                                        
   |
 
>--------------------------------------------------------------------------------------------------------------------------------------------------|




I'm using the TripleDES Function from the Perl-Modul Crypt::TripleDES -
no javascript function.

Jan


Clayton Scott wrote:

> Jan Dworschak wrote:
>
>> Hi,
>>
>> maxlength is already set in the input field with a value of 256 (that
>> should be enough).
>>
> Are you sure that your TripleDES javascript function is not to blame?
> Javascript doesn't
> always work the same in all browsers.
>
> Clayton
>


---------------------------------------------------------------------
Web Archive:  http://www.mail-archive.com/suppressed/
              http://marc.theaimsgroup.com/?l=cgiapp&r=1&w=2
To unsubscribe, e-mail: suppressed
For additional commands, e-mail: suppressed





---------------------------------------------------------------------
Web Archive:  http://www.mail-archive.com/suppressed/
              http://marc.theaimsgroup.com/?l=cgiapp&r=1&w=2
To unsubscribe, e-mail: suppressed
For additional commands, e-mail: suppressed



---------------------------------------------------------------------
Web Archive:  http://www.mail-archive.com/suppressed/
              http://marc.theaimsgroup.com/?l=cgiapp&r=1&w=2
To unsubscribe, e-mail: suppressed
For additional commands, e-mail: suppressed

Prev by Date: Re: [cgiapp] problem with form-data (get/post)
Next by Date: Re: [cgiapp] problem with form-data (get/post)
Previous by thread: Re: [cgiapp] problem with form-data (get/post)
Next by thread: Re: [cgiapp] problem with form-data (get/post)
Index(es):
- Date
- Thread

Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.