[Kyosaur]

Quote:

Originally Posted by Mike Garber Dude, SA:MP is not NASA or US Marines, we don't have to encrypt stuff, I mean worst thing could happend if someone with access takes it and uses It. Who in the world uses their password they use somewhere else on SA:MP anyways?

With the #1 password commonly used being "123456" and the #2 being "123456789", im willing to make the bet that TONS of people actually do this. I used to be admin on a VERY popular server that didnt have any form of encryption, as such anyone who had DB access (hacked, or granted) could see everyone's passwords. You can surely bet that this was hardcore abused. At one point a developer actually (illegally) entered a users email account to read the users personal information.

Its a VERY stupid not to encrypt your users passwords. It actually goes against one of the major rules of programming, don't assume anything . Assumptions always lead to disaster.



@OP - I wouldnt use that function if you made it / have no experience if the fields of hashes. To make a GOOD hash requires a lot of math/schooling. The big issue is how secure it is, and also how often it clashes. Clashing is more of an issue in this case (due to the audience sa-mp attracts), i would thoroughly test this before using it. Honestly i would just go with something that is guaranteed to be safe and have very little clashes (There are tons of plugins, and also mysql supports a lot of different hashes!).