How to use BCrypt - PHP Snippets - Tutorial #1

Показать описание

People often wonder how to safely store passwords, BCrypt is the answer. So how do you use BCrypt for PHP?

Watch this PHP Snippet and find out!

Also check out these link for more information about BCrypt:

Рекомендации по теме

Комментарии

Thank you so much for making a tutorial on this! been looking for one for a while now! I subscribed to your channel.

VirtousOn

How exactly would I include this within a query?

IlluminaticHD

Could you please make a tutorial about the random salt? :)

DsNLFireworks

I know this is about hacking passwords, but wouldn't using PDO with prepared statements be a better practice to get into to prevent SQL Injection? Check stack exchange for the vulnerabilities of real escape string

mattm

Yeah, you don't need to download anything at all. You can just use the function in the video and it'll work :)

TeachMeUp

I can't find the salt creation tutorial

VirtousOn

So I can use bcript without downloading cript_blowfish-1.x?

TrekOfTheTrade

Thank! that help me a lot form security but... how to decrypt?? ._.

nirayoshikage

Aaaaah!!! There's a huge vulnerability with the prevent function which would definitely result in an SQL Injection attack! His way ran the function but didn't return to the variables.

Do this instead:

function prevent(&$str) // note the & operator
{
$str =
}
prevent($username);
prevent($password);

The & operator gives the function access to the variable entered. This doesn't require a return because you are changing the variable data directly.

justin

Also as mentioned in the video you need to randomly generate a salt. The point of the salt is to make every password unique. If a hacker got into the db they'd have access to this salt so it's still possible to crack passwords, but as long as the salts are unique, even if users have the same password the hashes will be different thus making the task that much more a pain in the ass for Mr. Hacker. Be safe kids!

justin

I'm thinking the salt tutorial wasn't made because then everyone would know how to hack all of his sites. Posting his salting methods to the public would make all of his work less secure.

kikocarisse

How to use BCrypt - PHP Snippets - Tutorial #1

Bcrypt & Password Security - An Introduction

Password Storage Tier List: encryption, hashing, salting, bcrypt, and beyond

Hashing Passwords in Node and Express using bcrypt

how to use bcrypt generator tool, How to use Bcrypt Generator for developer #bcrypt #generator #tool

How to Use BCrypt to Store Passwords Securely: A Guide to Hashing Best Practices

Bcrypt Tutorial in Nodejs | Understand Hashing, Salt, Rainbow Tables and Bcrypt

BCrypt Password basics in Ruby

How to Hash Passwords with BCrypt in C#

Hashing passwords with Python and Bcrypt

Walkthrough: Setting up Bcrypt for Hashing and Comparing our Passwords

bcrypt password

#34 Spring Security | Bcrypt Password Encoder

Bcrypt - Web Development

Learn Python: Using Python to Hash Passwords using BCrypt

Spring Security - Password Encryption - Bcrypt Overview - Spring Framework Tutorial

Encrypting and Verifying a plaintext using Bcrypt Generator

Let’s hash our passwords using bcrypt npm library. #shorts #shortsvideo #bcrypt #encryption #secure...

Bcrypt Hash Generator Online Online

MERN #11: Secure User Password using Bcrypt.js

How to USE bcrypt NPM for Password security | 2024 Problem Solved

Flask Bcrypt - How to Hash Passwords

How to use BCrypt - PHP Snippets - Tutorial #1

Can I use Bcrypt Hashing Directly in MySQL for Password Storage?

C++ : CNG: When to use BCrypt* vs NCrypt* family of functions