TalkPHP - View Single Post

xenon · 02-07-2008, 10:12 PM

You can encode the password before performing the check, you know?

PHP Code:


			
$user = $_POST['username'];
$pass = md5($_POST['password']);

mysql_query( "SELECT id FROM users WHERE username='{$user}' AND password='{$pass}'" );

02-07-2008, 10:12 PM	#2 (permalink)
xenon The Frequenter Join Date: Dec 2007 Location: Bucharest, Romania Posts: 438 Thanks: 3	You can encode the password before performing the check, you know? PHP Code: `$user = $_POST['username']; $pass = md5($_POST['password']); mysql_query( "SELECT id FROM users WHERE username='{$user}' AND password='{$pass}'" );` __________________ I have optimistic thoughts, even though sometimes (if not always) life's a bitch.