MD5 performance

Anon

Hi everyone,
In my application, an email must be generated that contains a link so that the user can re-enter the system to a specific place. The link therefore must contain the username, the password, and a third variable to indicate where in the system they'll be directed to. I'd like for all 3 variables to be encrypted into one string which is then decrypted by the server and the pieces used. This way the users won't even know what variables are getting passed. It seems that the only way I can accomplish this is with the mycrypt functions, but it's doubtful I'll have access to those.

So, my next option is to do the standard ?username=EncryptedUserName&password=En... and so on. However, the username and the other variable are not encrypted in the database, so when I'm trying to verify the user is valid I need to encrypt every single user in the db and compare it against what was passed. I'll need to do this with the other variable as well.

What kind of performace hit will I take doing this? At how many records (mysql db server) will this become inpractical?

Any comments or suggestions on how to handle this in a better way would be appriciated.

Jim

brandonschnell

Why would a link contain a password?

I'd send a link containing username & destination url. When the user accesses the link the page recognizes the password wasn't included. Username and password is sent to server, password hashed with md5 and compared with database. If valid sent to the destination address. give the user the option to change users. Annoys users when they send a copy to their buddy and their buddy can't logon.

I like to use a table of just current users. Typically containing a unique id (md5 hash of timestamp, username, and a random phrase created at installation), ip address, timestamp, whatever else i might normally store using sessions.

If the user has to be able to access a page without using a password (such as for a survey), i'd create a new unique user in the users table. send the email with a link including just the unique id md5 hash. The script on seeing the hash would check the users table. If a valid entry is found then update the table to the current ip and update the timestamp. This way the link could be used as a one time only deal. Not valid with another ip or after it expires in a set period (based from timestamp).

Any type of crypt is expensive in cpu time. Using one way hashes like md5() can speed things up. Just don't include passwords in anything sent to the user, encrypted or not, unless the user specifically asks for a password reset. and you're creating a new random password for password resets right? not storing the passwords in plain text?

we'd have to know more about what you're trying to do to help you out much more.