-
Website
http://buildingbrowsergames.com -
Original page
http://buildingbrowsergames.com/2008/07/15/securing-our-hashes-php/ -
Subscribe
All Comments -
Community
-
Top Commenters
-
gabrielbianconi
1 comment · 1 points
-
Luke
82 comments · 1 points
-
spatlabor
1 comment · 1 points
-
HughCompton
2 comments · 1 points
-
obat jerawat
1 comment · 1 points
-
-
Popular Threads
While it usually works regardless, HTTP/1.1 requires you to use an absolute URL in header redirects. Example from php manual below:
/* Redirect to a different page in the current directory that was requested */
$host = $_SERVER['HTTP_HOST'];
$uri = rtrim(dirname($_SERVER['PHP_SELF']), '/\\');
$extra = 'mypage.php';
header("Location: http://$host$uri/$extra");
exit();
Why? I mean, if I change the salt value (if someone figured it and modified his dictionary to it), noone would be able to login any more....
securing it, as they are in not repeating it everywhere - if your salt is
'thequickbrownfoxjumpedoverthelazydog', do you really want to type that
everytime you need it?
Anyway, my salt (which I made before I read this thanks to the user comments on other pages) is short, and I probably do not need it anywhere else than on the login and register page.
Thanks for your reply!