This requires additional processing for password storage and retrieval, but is more secure, as passwords are not easily determined if the data source is compromised. Encrypted passwords are encrypted when stored and can be decrypted for password comparison or password retrieval. Clear passwords are stored in plain text, which improves the performance of password storage and retrieval but is less secure, as passwords are easily read if your data source is compromised. Passwords can be stored in Clear, Encrypted, and Hashed password formats. PasswordFormat valuesThe PasswordFormat property indicates the format that passwords are stored in. Users can elects to change the default by editing the following value in web.config Version 3.0 and above shipped with encrypted passwords set by default, but version 7.1.0 changes to hashed passwords. These handle the storage and retrieval of user specific information, as well as the user's passwords. BackgroundSince version 3.0 DotNetNuke's user membership is built upon (and extended from) Microsofts MembershipProvider classes that ship with asp.net.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |