[stabker]

Quote:

Originally Posted by BigETI No, if a player creates a new account on your server (means creating a new file at scriptfiles directory) so you have to hash the registration password right after the player attempts to create a new account. Now usually this player will quit and rejoin again to play with its stats. So after the player logs into your server to use its stats you have to hash the password the player uses to write to log in, get the earlier saved one and compare both strings to check whether the password was correct or just totally wrong.

if(Hash of input password == hash in the file) we can login

MrPlatinum, You should compare the encrypted passwords

P.S. Encryption helps to steal passwords in case of burglary. If the password can decrypt it is not reliable.

(Sorry for my bad English)