FAQ Database Discussion Community


Ghostscript does not honor PDF security permissions

pdf,ghostscript,password-protection
I need to protect a set of PDF files that will be exposed to users on a webpage. PDF should only be readable, no other permission should be possible. Using pdftk I have created "secured" PDF which I have tested both in various browsers. So far so good. pdftk input.pdf...

Password verify using PDO returns nothing

php,pdo,login,password-protection
I'm trying to create a login page but when I try and log in I get a blank page returned, I get no errors either. I want to return a success or failure message based on the outcome of the login script. Where am I going wrong? Login page: try...

Securing Access database

password-protection,ms-access-2013
I am trying to secure the database with methods more reliable than hiding the navigation panel and hiding the back-end file. Is there a way to completely password-protect all objects from being modified or accessed? Would this cause trouble when they attempt to modify table data through a form? If...

Where is the salt stored for password_hash?

php,password-protection
According to (relatively) new PHP documentation: The password_hash function uses a random salt (which we should not worry about.. O_O), so if I understand correctly the salt has to be stored somewhere, else the user won't be able to login after registering to a website (different salt => different hash.)...

Password Protect app installation

android,password-protection
I want my App users to enter a password before they could actually install my app, I have searched on this topic,but didn't get relevant details. Any guidance will be helpful! Thanks...

Exchange 2007 account

password-protection,exchange-server-2007
The employee forgot to put out of office reply in Outlook before you leave on vacation. Is there a way for an administrator to do it for the user without knowing his password? running Exchange 2007

What's wrong in this SHA-256 Javascript code?

javascript,hash,passwords,password-protection,sha
var secure; var authentic; secure = prompt("Enter password",""); alert(secure); var c1 = CryptoJS.SHA256(secure); alert(c1); authentic = prompt("Enter password",""); alert(authentic); var c2=CryptoJS.SHA256(authentic); alert(c2); if(c1==c2) { alert("hi"); } else { alert("bye"); } I use the script "http://crypto-js.googlecode.com/svn/tags/3.1.2/build/rollups/sha256.js" EXPLANATION: What, I'm trying to do is to compare hashed passwords.If both the passwords entered...

Key stretching algorithms vs throttling for password “hashing”

security,hash,password-protection
Why do people suggest using key stretching algorithms like bcrypt/pbkdf2 which take longer to calculate (on purpose), rather than using faster algorithms, which are also secure, like salted sha-256 or sha-512 and using a throttling mechanism to limit brute-force attacks? Throttling is not CPU bound, and will deliver the same...

Get string from a web server's protected folder

objective-c,.htaccess,password-protection
I have a web server (not protected) and a password protected folder in that server. I always used [NSString stringFromContentsOfUrl: encoding: error:] method to get data from my web server. But now, I'd like to get some data from the protected folder. When I use the same method, the string...

How to pre-fill user field on protected directory

.htaccess,password-protection
I plan to make a test subdomain on my website, protected by a password (.htaccess / .htpasswd). I only require minimal security and wish to make login easy for visitors who know the password. Can I arrange for the username field of the login box to be filled in with...

Provide 4-pin password protection to android app

android,password-protection
I would like to add 4-pin password protection to my android app, something like in Evernote app.. The user should have an option to enable or disable the password protection. But I have no idea where to start... Layout: I want four boxes that accepts only numbers.May be using editText...

Hashing Password in ASP.NET and Resolving it In SQL Procedure

asp.net,vb.net,stored-procedures,hash,password-protection
I'm developing an ASP.NET application using SQL Server Stored Procedures. I need to hash my login password and resolve it in my sp_LoginCheck Stored Procedure. Any suggestions? I have already inserted data in the database. For example: UserName/Password ABC/123456 DEF/987654 I want to encrypt or hash whatsoever the password then...

jQuery Prompt for Password doesn't want to display

jquery,html,css,password-protection,password-prompt
$(document).ready(function() { $(document).display(none); var password =("You have just entered a private website. Please enter the password to access it!"); if (password == "biology") { $(document).display(); } else { window.location.replace("https://www.google.co.uk") }; }); html { background-image: url("bg.jpg") } body { margin: 0 25%; background-color: #ccc; } nav li { padding-left: 5px;...

How do you create a password protected registration form that checks the password against a database table before submit?

php,mysql,forms,password-protection
I have a php registration form and one of the fields on the form is a password field and I want the form to check the password against a database table list of passwords before allowing the form to submit the user's info. So pretty much the user needs a...

How risky is it to use email for custom sign in?

security,passwords,password-protection
For a web application, where we need to store and manage users (SSO or openauth or what not is off the table), where we manage important business data, how risky is it to use an email address + password as the sign in? For the last 15 years or so,...

Javascript Password Protected area.. must be better way

javascript,password-protection
I am still pretty fresh in the javascript scene, but I have this bit of code that works as intended for all intents and purposes.. but there just simply must be a better and cleaner way of going about it, and I would just love to see how it would...