05.12.2012, 14:36
1. NEVER save passwords as plain text, never. Hash it (I'd recommend Whirlpool or SHA2) and salt it (prevents dictionary attacks).
Storing the password as text is a major security threat. If the database is ever compromised, the hacker will get the password immediately.
2. Add `id` field to the table (primary index, auto increment, unsigned integer)
This makes it easier and more efficient to deal with the accounts.
3. You should utilize the great caching functionality of the MySQL plugin. Fetching data is much more efficient using the cache.
4. Consider using ZCMD or YCMD instead OF DCMD, they are both faster than DCMD.
I would recommend this only if you might need to access the data for example from filterscripts as well. https://sampforum.blast.hk/showthread.php?tid=268499
Storing the password as text is a major security threat. If the database is ever compromised, the hacker will get the password immediately.
2. Add `id` field to the table (primary index, auto increment, unsigned integer)
This makes it easier and more efficient to deal with the accounts.
3. You should utilize the great caching functionality of the MySQL plugin. Fetching data is much more efficient using the cache.
4. Consider using ZCMD or YCMD instead OF DCMD, they are both faster than DCMD.
Quote:
1. Instead of using a enum just use PVars for all of them.
|