Making it more secure...

Anon

I am making a user database, where all users information is stored in a mysql database.

The 5 columns are username, password, email, name, level.

The trouble is, I'm just not sure its secure enough. I simply send all the data using INSERT or UPDATE, and the password isn't encrypted.

Is there a way to make this more secure, AND, is there a way to edit both the htgroup and htpasswd files when passwords/usernames are edited?

Thanks in advance!

James

Anon

Yup there is, when saving try and save the password as password($password), this will help you to have encrypted password in the table.
Note password() is a mysql function and not php's

Anon

How do I do that?

Jam

Anon

When you write your insert statement call the password function like below

INSERT INTO <Table_name> VALUES($user,password($password), .., .., .. )