Is loveforum login really secure?

[TAVS]

Hey There LA. Thats cool. I know I havent been around a lot, I'm busy building my own Internet empire and its taking all my time

[Cain]

The Hash definitely secures things. The passwords are scrambled when they are entered. They aren't even stored inside the MySQL database as the same as they are when entered. They are all scrambled code.

SSL certificates are usually only purchased when security could be detrimental, such as credit cards and social security numbers.

[anachronistic]

The Hash definitely secures things. The passwords are scrambled when they are entered. They aren't even stored inside the MySQL database as the same as they are when entered. They are all scrambled code.

SSL certificates are usually only purchased when security could be detrimental, such as credit cards and social security numbers.

Purchased? Well if you can't set the shit up yourself with openSSL

[Cain]

OpenSSL is just a program, not a certificate authority. OpenSSL just generates a self-signed certificate without any forms of verification. A certificate authority like Thawte and Verisign actually verify that the owner of the site is where the information is being sent to.

Regardless, that is only needed for the prevention of snooping of private information. As I mentioned the passwords are hashed into a mixture of characters when put into the SQL database. Loveadmin wouldn't be able to even see what anyone's password is.

[Kerbey.Moor]

answer is no