--
lalit.tankala@... <
lalit.tankala@...> wrote
(on Thursday, 03 April 2008, 03:14 AM -0700):
> I am currently authenticating using Zend_AUTH and using MYSQL database
> for authentication. The password is getting authenticated irrespective
> of whether the it is being written in upper case or lower case. I have
> not found any support for the same till now. I would be glad if anyone
> can help me in this regard.
MySQL typically is case insensitive for comparisons... which tells me
that you're likely storing the password in plain text. I'd advise that
you store the password using a hashed value, which will ensure that you
have case sensitivity (the hash will be different based on case), and
also prevent somebody from snooping your database to discover passwords.
--
Matthew Weier O'Phinney
PHP Developer |
matthew@...
Zend - The PHP Company |
http://www.zend.com/
