[DUG] How to make secure MySQL
jc at magicweb.nz
jc at magicweb.nz
Mon Aug 20 17:07:03 NZST 2018
Hi all
I think I found a solution for this encrypting BEFORE sending a password and username to the server. The following code encrypts the password (using md5) before it is POSTed to the server. Any good?
Or is this whole scenario covered by an SSL Certification module?
John C
------------------------------------------------------------------------
CODE
------------------------------------------------------------------------
<html>
<head>
<script src="md5.js" language="javascript" > alert("md5.js script loaded"); </script>
<script language="javascript" type="text/javascript">
<!--
function doLogin()
{
document.formname.hash.value=MD5(document.formname.password.value);
document.formname.password.value = "";
document.formname.submit();
}
// -->
</script>
<form name="formname" method="GET" action="somefile.php" >
Username<input type="text" name="username" size="9" maxlength="15"> Password<input type="password" name="password" value="" size="9" maxlength="70"> <input onClick="doLogin(); return true;" type="submit" value="Login"> <input type="hidden" name="hash" value="">
</form>
</body>
</html>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listserver.123.net.nz/pipermail/delphi/attachments/20180820/06ef3b3b/attachment.html
More information about the Delphi
mailing list