Differences between Commercial and Community versions of LiveCode

prothero at earthlearningsolutions.org prothero at earthlearningsolutions.org
Wed Jun 6 17:16:46 EDT 2018


I’ve been having questions about aes 256 encryption lately. I encrypt MySQL queries and data ,(in livecode) before sending it to a php script on my remote server. The php version returns a warning message that I am not using a salt, which reduces security. Ok, but I can’t find info about how to create and use salts. What are the parameters needed to make a salt, and do I have to do anything to my decode script in php to make it recognize the salt? 

It would be wonderful if there was a sample code for this.

Best,
Bill

William Prothero
http://earthlearningsolutions.org

> On Jun 6, 2018, at 1:51 PM, Richard Gaskin via use-livecode <use-livecode at lists.runrev.com> wrote:
> 
> Tom Glod wrote:
> 
> > what if for example you want to hard code a hash salt into your
> > code?.....
> 
> Most auth DBs store a salt in plain text, but unique for each user.
> 
> A single RAM dump doesn't slow attacks; eating up clock cycles does.
> 
> --
> Richard Gaskin
> Fourth World Systems
> Software Design and Development for the Desktop, Mobile, and the Web
> ____________________________________________________________________
> Ambassador at FourthWorld.com                http://www.FourthWorld.com
> 
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode





More information about the Use-livecode mailing list