MySQL and PHP simple login system

hellomen · 10-28-2013, 07:52 PM

(10-28-2013, 07:41 PM)Vile Wrote:
(10-28-2013, 07:32 PM)hellomen Wrote:
(10-28-2013, 06:57 PM)Vile Wrote:
(10-28-2013, 06:33 PM)hellomen Wrote:
(10-28-2013, 03:20 PM)noize Wrote: Huh? Password instant storage? Session over cookie?

You have clearly got no idea about what you're talking about. I clearly stated this is an old thread and that I should rewrite this from scratch to make something decent, but there are already tons of posts on such a matter.

Stop spamming with senseless statements.

seems like you aren't knowing what you say.
I don't don't care how old the thread edit I'm still allowed to answer of them whem I see people use this WRONG thread

password instant storage - obviously you didn't even encrypted it in this so it's intstanst password storage

Session over cookies - like the code said you uses sessions instead of cookies which isn't better it's even worse.

I exactly know what I am talking about if goes about such codes and I will not shut my mouth for such immagure kind of unsensed texts you wrote there.
I am not talking about other work as of with the register/login simply the fact that this is this thread and the other threads are others.

regards,
hellomen
ps: never try to make such butthurt texts.

I think your speech has dropped my IQ. Anyways, never, EVER, encrpyt/encode passwords, it's breakable. If you do, hash the encoded text, and then rehash the hashed encoded text. Sessions and cookies are both equally good AND bad. I can hijack both. You need to learn to spell, and right now my sentences are so fragmented.

encoding is still better secured than just uploading the passwords to the database!

"You need to learn to spell" Oh sorry mister english nazi
that I am not well known in the language english but still got my feeds into programming and giving the right feedback on this thread which you probably can;t handle else you wouldn't start about it...

It's nothing more than a desperate way out of getting to talk about how I spell

WELL SORRY THAT NONE OF THE WORLD SPEAKS THE LANGUAGE ENGLISH PROPERLY!

I do not affiliate myself in any way as being a Nazi. I am also not English, but your grammar shouldn't be that bad, I know what foreign grammar is like, and it's mainly just badly worded, not incorrectly spelled, of course people learn, but off that topic, and onto the next.

Encoding without a key can be very, very insecure. Hashing is a one-way design, which is almost unbreakable [keyword: almost].

"I do not affiliate myself in any way as being a Nazi. I am also not English, but your grammar shouldn't be that bad, I know what foreign grammar is like, and it's mainly just badly worded, not incorrectly spelled, of course people learn, but off that topic, and onto the next." so people that aren't that well in english but people still understand each other shouldn't be on the internet or posting because the grammar should not be that bad? ugh comong

YOU NEED TO RATE THE CONTENT NOT THE GRAMMAR

it's like saying: Look I am the highest rank in game so I am the best, which truely isn't since a KDR shows how good people are...

"Encoding without a key can be very, very insecure. Hashing is a one-way design, which is almost unbreakable [keyword: almost]."

seriously dude read before fucking posting
we are talking about this damn thread
read the fucking codes if you atleast understand php you'd see he saves it generally to the database without encoding / hashing or any type of shit

read where we are speaking about before saying non-sense shit

(10-28-2013, 07:51 PM)noize Wrote:
(10-28-2013, 07:32 PM)hellomen Wrote: encoding is still better secured than just uploading the passwords to the database!

"You need to learn to spell" Oh sorry mister english nazi
that I am not well known in the language english but still got my feeds into programming and giving the right feedback on this thread which you probably can;t handle else you wouldn't start about it...

It's nothing more than a desperate way out of getting to talk about how I spell

WELL SORRY THAT NONE OF THE WORLD SPEAKS THE LANGUAGE ENGLISH PROPERLY!

It is no problem how you speak, expect for when you say one thing instead of another, which makes it clearly hard for one to understand what you mean. You can't complain in such a case, but anywhen else, no one demands from you a fluent speaking.

The fact is that you said things like "instant password storage" while meaning "unsafe password storing" or "session over cookie" instead of "session instead of cookie" (this latter thing is still not safer, even now that I get what you mean). If you say things that make no sense, you cannot complain that people can't understand you.

What I argue is the fact that you're raising such an argument while you're completely wrong. This is clearly no way meant to be a safe signup/login system for end users, but just mostly a PoC of a PHP MySQL login system. You are either supposed to know what to do with these codes, or not to use them.

If I included how to make a signup page, of course I would have protected the passwords and I would have said the reason.

I understand your meaning of the thread you made my tips were only warnings for people that try to learn from it because this is not the best way to do it...
but people follow tutorials if they learn it on the bad way from you (or in-secure out dated) they will blame your ass off for the problems.

Slarek · 10-28-2013, 08:21 PM