Results 1 to 7 of 7

Thread: [RESOLVED] Password Table

  1. Jan 14th, 2008, 01:24 PM #1
    Liquid Metal
    Liquid Metal is offline

    Thread Starter
    Frenzied Member
    Join Date
    Apr 2003
    Location
    The Future - Skynet
    Posts
    1,157

    Resolved [RESOLVED] Password Table

    I have seen some applications where they store username and password into a table. Would you agree this is not the ideal practice?

    I use AD to check for permission. I tried to avoid storing users' passwords in a table.

    Is there ever a need to store users passwords in a table in terms of design wise?
    I'll Be Back!

    T-1000

    Microsoft .Net 2005
    Microsoft Visual Basic 6
    Prefer using API
    Reply With Quote Reply With Quote
  2. Jan 14th, 2008, 01:30 PM #2
    si_the_geek
    si_the_geek is offline
    Super Moderator si_the_geek's Avatar
    Join Date
    Jul 2002
    Location
    Bristol, UK
    Posts
    41,930

    Re: Password Table

    If you have the option, using something like AD is a very good idea, but unfortunately there are times when that isn't possible - such as when users are connecting to the database via a web site.

    This site is a good example of that, and is a case where a table with login details is needed. However, I would expect that the details are not stored in plain text, and instead are encrypted or hashed.
    (Microsoft MVP from July 2007 to June 2017) . . . . . . . . . . Hitchhiker's Guide to Getting Help at VBForums

    Database Development FAQs/Tutorials (updated May 2011) (includes fixing common DB related errors, and [VB.Net] ADO.Net Tutorial, and [Classic VB] ADO tutorial /further steps)
    other useful DB bits: . Connection strings (alternative copy).. MDAC/Jet/ACE downloads .. SQL Server downloads .

    Classic VB FAQs (updated Oct 2010) (includes fixing common VB errors)
    some of my Classic VB bits: . Tutorial: How to automate Excel from VB6 (or VB5/VBA) .. SQL 'Select' statement formatter/checker .. Convert colour number to colour name .. FlexGrid: fill from recordset .. FlexGrid: AutoSize columns .. DB Reserved Words checker .
    Reply With Quote Reply With Quote
  3. Jan 14th, 2008, 01:37 PM #3
    Liquid Metal
    Liquid Metal is offline

    Thread Starter
    Frenzied Member
    Join Date
    Apr 2003
    Location
    The Future - Skynet
    Posts
    1,157

    Re: Password Table

    That makes sense Si_The_Geek.

    I was refering more for intranet applications but you made a good point and pointed out that a password table is required for internet applications.

    Hmmmm...That is where CVMichael's encryption string function comes into play.
    I'll Be Back!

    T-1000

    Microsoft .Net 2005
    Microsoft Visual Basic 6
    Prefer using API
    Reply With Quote Reply With Quote
  4. Jan 14th, 2008, 01:43 PM #4
    si_the_geek
    si_the_geek is offline
    Super Moderator si_the_geek's Avatar
    Join Date
    Jul 2002
    Location
    Bristol, UK
    Posts
    41,930

    Re: Password Table

    I have seen Intranet systems where AD or similar can't be used (due to network problems), but would always use it if possible.

    In terms of security, I would recommend hashing (which cannot be reversed to get the original value) rather than encryption (which can be reversed, if you know how it was done).
    (Microsoft MVP from July 2007 to June 2017) . . . . . . . . . . Hitchhiker's Guide to Getting Help at VBForums

    Database Development FAQs/Tutorials (updated May 2011) (includes fixing common DB related errors, and [VB.Net] ADO.Net Tutorial, and [Classic VB] ADO tutorial /further steps)
    other useful DB bits: . Connection strings (alternative copy).. MDAC/Jet/ACE downloads .. SQL Server downloads .

    Classic VB FAQs (updated Oct 2010) (includes fixing common VB errors)
    some of my Classic VB bits: . Tutorial: How to automate Excel from VB6 (or VB5/VBA) .. SQL 'Select' statement formatter/checker .. Convert colour number to colour name .. FlexGrid: fill from recordset .. FlexGrid: AutoSize columns .. DB Reserved Words checker .
    Reply With Quote Reply With Quote
  5. Jan 14th, 2008, 01:51 PM #5
    Liquid Metal
    Liquid Metal is offline

    Thread Starter
    Frenzied Member
    Join Date
    Apr 2003
    Location
    The Future - Skynet
    Posts
    1,157

    Re: Password Table

    Got it!

    Thank You
    I'll Be Back!

    T-1000

    Microsoft .Net 2005
    Microsoft Visual Basic 6
    Prefer using API
    Reply With Quote Reply With Quote
  6. Jan 25th, 2008, 11:36 AM #6
    CVMichael
    CVMichael is offline
    PowerPoster
    Join Date
    Feb 2002
    Location
    Canada, Toronto
    Posts
    5,802

    Re: [RESOLVED] Password Table

    I just saw my username is mentioned here....

    I think this should help you:
    VB6 - Example on how to make a Login where password is stored hashed in Database
    Reply With Quote Reply With Quote
  7. Jan 26th, 2008, 05:39 PM #7
    Liquid Metal
    Liquid Metal is offline

    Thread Starter
    Frenzied Member
    Join Date
    Apr 2003
    Location
    The Future - Skynet
    Posts
    1,157

    Re: [RESOLVED] Password Table

    I been looking for something like that for a while CVMichael. I am going to examine it more in detail tonight. If I have any questions, I will post to the original thread. Here is a 3-eyed frog for you.
    I'll Be Back!

    T-1000

    Microsoft .Net 2005
    Microsoft Visual Basic 6
    Prefer using API
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules


Click Here to Expand Forum to Full Width