Hi all ,
I looked through the tutorials for info about this, but I couldn't find exactly what I was looking for.

I'm using PASSWORD() to encrypt a password.  It uploads to the database in an encrypted form, but when I try to call confirm a password at login, I can't get the two to match.  I know it's a PASSWORD issue, because if i get rid of it and submit info without any kind of encryption, it works.

Here's what my abbreviated code looks like:


Any help is greatly appreciated!

Try this in the login part:Furthermore, you could simply use the md5 function to encrypt. It's a sufficiently good one-way hashing algorihtm. I never rely on security by obscurity.

that returned this error:
Fatal error: Call to undefined function: password() in /var/www/html/login.php on line 26

i'm using PHP 4.3, this should work right?

I'd missed a close bracket. It should be
The version of PHP shouldn't matter. If this doesn't work then could you please say what errors you're getting and what the original error was. If the PASSWORD() function is short, then posting that could help too.

I caught the close bracket.

the original error was just my code echoing that the passwords don't match.  I'm still getting this error, resulting from the '".PASSWORD('p')."' change:

Fatal error: Call to undefined function: password() in /var/www/html/login.php on line 26

I'm not sure what you mean by "if the PASSWORD() function is short".

You shouldn't need the single quotes in the functions parameter. An undefined function error means that it can't find the function. Remember that the function name is case sensitive, double check that you included the file if it is in anaother file. I can't think of what else there is. Maybe you've missed a { or } somewhere which causes errors. You could try making a backup of the file and using md5() instead of PASSWORD().

You use $query = "INSERT INTO users (username, password) VALUES (PASSWORD('$password'))"; to store the info, should it be ...VALUES ('something', PASSWORD($password)...? Check your database and see if the details are appearing where they should be.

One more possability is if PASSWORD can ever create special characters like / \ ' " ( ) &. If it can, then some built in escaping might be taking place which changes the table entries. You'd better debug. When you're loggin in, try something like this:I think you can figure out where that goes. Maybe that'll help see what's wrong.

I'd say long is more than 10-15 lines.

The md5() function is a great way to do this. For more information on it, Visit php.net and get the manual.