· August 8, 2014
The way which I use to encrypt a password is very childish(As I Think). Therefore I need some kinda proper way to do it ensure the security of the system. I usually use the same hash for every user. Basically when a user registered It is encrypted using md5(); and stored in the databse. When login the user's password is re-encrypted and matched with database's password. I feel it's too simple and easy to hack so any new idea or a great way of doing this ?