如何使用SHA256和salt加密？

Before: I'm sorry for my english.

Ok right now i'm using the following encrypt method:

SHA256_PassHash(inputtext, "78sdjs86d2h", MyHash, sizeof(MyHash));

SHA256 WITH SALT: "78sdjs86d2h

Right now i'm checking the password like this:

if(isset($_POST['username']) && isset($_POST['password'])){
    $username = mysql_real_escape_string($_POST['username']);
    $password = mysql_real_escape_string($_POST['password']);

    $check = get_row("SELECT playerID FROM playeraccounts WHERE playerName='$username' && playerPassword='$password'");
    if(isset($check['playerID']))
    {
        $_SESSION['username'] = $_POST['username'];
        $_SESSION['password'] = $_POST['password'];
        mysql_query("UPDATE playeraccounts SET rpgon=1 WHERE playerName='$username'");
        $id = $check['playerID'];
        header("location: index.php");
    }
    else
    {
        $err = 'Username sau parola incorecte';
    }
}

How can i make it work with this salt method ? Please i'm not very bright about PHP ... can somebody enlight me about how to encrypt the input text ?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doudi1449 2016-02-29 00:25
关注
Don't use SHA256 (which for future reference is a hash function, not an encryption method) for storing passwords. Refer to How to safely store your users' passwords for up-to-date best practices.

Since you're asking about PHP, you want to use password_hash() and password_verify().

Also, beware of SQL injection corner cases.

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

如何使用libsodium php使用salt加密/解密密码 php
2017-05-23 09:59

回答 2 已采纳 If you dont need specifically use libsodium, with this function you should be able to store the da
可以将MD5转换为SHA256吗？ database mysql php
2013-10-21 05:37

回答 1 已采纳 Hashing algorithms are one-way i.e. They cannot be reversed unlike Encryption-Decryption algorithm
如何在PHP中扩展用户加密密码？ php
2016-05-27 22:40

回答 3 已采纳 The problem is in the function: function generate_key_from_password($password) the line: $salt
php使用aes256加密,请问PHP如何通过openssl实现AES-256加密算法？
2021-04-09 10:12

赵劼的博客 $mac = hash_hmac('sha256', $iv.$value, $key); $json = json_encode(compact('iv', 'value', 'mac')); if (! is_string($json)) { return false; } return base64_encode($json); } function decrypt($payload, $...
PHP AES加密JAVA到PHP - openssl_encrypt php
2018-11-20 11:39

回答 1 已采纳 I have solved your code by using below code Hope this may help you public function encrypt($d
使用Javascript（cryptojs）加密，使用php openssl解密，无法重新创建消息密钥 php
2018-05-12 04:59

回答 1 已采纳 After creating a routine to run through all possible algorithms for openssl_pbkdf2 and the hash_pb
如何将此C＃Rijndael加密转换为PHP？ c# php
2012-01-25 22:55

回答 3 已采纳 I think that the PHP version may actually add 00h valued bytes to the key and IV. They both have a
php salt 加密,php – 如何为一个密码实现sha 512,md5和salt加密
2021-04-08 10:27

篷汎山的博客编辑：由于这个答案似乎仍然引起了一些兴趣,让我引导你们走向password_hash(),这本质上是一个关于crypt()的包装,但更...如果您已经在使用crypt(),那么值得注意的是password_verify()和password_needs_rehash()都可以...
通过HTTPS在MySQL和PHP中进行密码加密 mysql php
2011-01-29 01:18

回答 3 已采纳 If somebody hacks into your server, or gets ahold of a backup, and the passwords aren't aren't has
使用来自yii2的数据进行C＃AES加密解密 c# php
2018-06-18 17:28

回答 1 已采纳 Your Key derivation (HKDF) is not entirely correct. This line does not the same as chr(1): byte[
如何最好地使用加密方法来确认代码 php
2013-06-21 08:52

回答 2 已采纳 You have two main options here: generated some random data, store it in your database associated
python 加密sha256_python hashlib模块 md5加密 sha256加密 sha1加密 sha512加密 sha384加密 MD5加盐...
2020-12-11 10:31

weixin_40001245的博客 hashlibhashlib主要提供字符加密功能，将md5和sha模块整合到了一起，支持md5,sha1, sha224, sha256, sha384, sha512等算法具体应用#!/usr/bin/env python# -*- coding: UTF-8 -*-#pyversion:python3.5#owner:...
移植在PHP中实现的XOR加密方案 ios objective-c php
2014-12-24 21:37

回答 2 已采纳 You need to implement the method that creates $gamma. Then to encode or decode create $gamma and x
android密码sha256解密,使用password_hash和SHA256加密和解密
2021-06-11 03:51

圭多达莱佐的博客使用password_hash和SHA256加密和解密在我的注册页面，我用这个..$salt = hash('sha256', uniqid(mt_rand(), true) . $email);$storedHash = $salt . $password;for ($i = 0; $i < 50000; $i ++)...
使用PBKDF2算法和SHA256算法，加密用户账号密码
2023-11-01 21:19

董先生_ad986ad的博客例如，存储和管理盐值需要采取适当的安全措施，如加密存储或使用专门的密钥管理服务。例如，存储和管理盐值需要采取适当的安全措施，如加密存储或使用专门的密钥管理服务。例如，存储和管理盐值需要采取适当的安全...
没有解决我的问题, 去提问

悬赏问题

¥15 如何在scanpy上做差异基因和通路富集？
¥20 关于#硬件工程#的问题，请各位专家解答！
¥15 关于#matlab#的问题：期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707，使系统具有较小的超调量
¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
¥30 截图中的mathematics程序转换成matlab
¥15 动力学代码报错，维度不匹配
¥15 Power query添加列问题
¥50 Kubernetes&Fission&Eleasticsearch
¥15 報錯：Person is not mapped，如何解決？
¥15 c++头文件不能识别CDialog

如何使用SHA256和salt加密？

1条回答 默认 最新

悬赏问题

1条回答默认最新