U
undertaker
Guest
Im making my homepage with ASP and I would like to have encrypted access database field for all passwords which are used in log in. So how can I encrypt fields in access? Im using Office XP.
spacepro
Registered User.
- Local time
- Today, 05:30
- Joined
- Jan 13, 2003
- Messages
- 715
If you are talking about masking the actual values for all passwords in the db like they would appear on a web form, then just simply set the fields Input mask to PASSWORD.
Sorry can't help with encryption.
Good Luck
Andy
Sorry can't help with encryption.
Good Luck
Andy
U
undertaker
Guest
no no. The problems isn´t in the html code, but in the access database. I already have that login input (in html code) set up to password.
I need to encrypt the database values in the database table.
I would like to see login names normally but password section should be encrypted.
I need to encrypt the database values in the database table.
I would like to see login names normally but password section should be encrypted.
spacepro
Registered User.
- Local time
- Today, 05:30
- Joined
- Jan 13, 2003
- Messages
- 715
undertaker said:
No you misundertand, I am talking about Access. You can do it table level and form level by setting the Input Mask Property to PASSWORD. This will encrypt the data to ******* for example.
Regards
Andy
- Local time
- Yesterday, 23:30
- Joined
- Feb 28, 2001
- Messages
- 30,194
Access does not automagically encrypt distinct fields. If you want to do something like this, you must find the cypher code yourself and build an encrypter subroutine or function. Then you have to decide what you store. Most systems like this do not store the clear-text password, they just store the encrypted password.
Now, I'm not saying this is the perfect answer, BUT...
If you could get your hands on documentation for Winsock programming or TCPIP protocol internals for Windows (not easy to find), you might find some references to TCPIP-support subroutines that perform either MD4 or MD5 encryption for you. So you could define a call to the subroutines with the appropriate EXTERNAL reference to the DLL file holding the encrypter. Give the routines the input strings you want encrypted and the key, salt, and algorithm codes, and give them a place to return the result.
When you reset a password, encrypt it and store the result. When you get a login attempt, encrypt that password and compare it to the (stored) encrypted password in your table. The resultant strings would be equal or not equal. That would do it for you, I think.
Now, I'm not saying this is the perfect answer, BUT...
If you could get your hands on documentation for Winsock programming or TCPIP protocol internals for Windows (not easy to find), you might find some references to TCPIP-support subroutines that perform either MD4 or MD5 encryption for you. So you could define a call to the subroutines with the appropriate EXTERNAL reference to the DLL file holding the encrypter. Give the routines the input strings you want encrypted and the key, salt, and algorithm codes, and give them a place to return the result.
When you reset a password, encrypt it and store the result. When you get a login attempt, encrypt that password and compare it to the (stored) encrypted password in your table. The resultant strings would be equal or not equal. That would do it for you, I think.
