Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Hashing in phpMyAdmin

Tags:

mysql

hash

phpmyadmin

I have a mySQL database and I am using phpMyAdmin to access it. The database has table employees with fields like name, address, email and password.

Initially the password field was just VARCHAR (20). But now I want to hash my password with SHA-256 hashing technique.

I do not have much experience with databases so I want to know is -

  1. can I hash all my current employees passwords without affecting the other fields or the entire table?

  2. In future when I am entering data in the database (from a web application), where do I write the hashing function to hash the password? i.e. does the hashing occurs at the front end and then the hashed password is stored in the DB or the password goes to the DB where it is hashed and then stored.

Solution and Suggestions are appreciated.

like image 785
codeinprogress Avatar asked Aug 08 '12 09:08

codeinprogress

2 Answers

Q1: Can I hash all my current employees passwords without affecting the other fields or the entire table?

A: Yes. But you need to alter the size of your column of the password by 40-42. You will use the PASSWORD( ) built-in function to encrypt your password

ALTER TABLE tableName MODIFY `password` VARCHAR(42);

after that you can now update the password column

UPDATE tablename
SET     `password` = PASSWORD(`password`);

ex.)

abcde12345 => *20B30AFAF441808B50273EDA287132EC25B02DE2

Q2: In future when I am entering data in the database (from a web application), where do I write the hashing function to hash the password?

A: In your INSERT query

INSERT INTO tableName (name, address, email, password) 
VALUES ('aa','bb',''cc,PASSWORD('abcde12345'))

when you want to search for the password, encrypt first the text:

SELECT *
FROM   tableName
WHERE `password` = PASSWORD('abcde12345')

one more thing, don't forget to escape your Password column with backtick since it is a MySQL Reserved Word.

like image 148
John Woo Avatar answered Oct 17 '22 13:10

John Woo

You can hash the password in php and then store it in the DB:

$pwd = hash('sha256',$_POST['password']);

MySQL does not support sha256 function so you need to hash by code and then store/update your password table. Otherwise you can consider this http://stuge.se/mysql-sha256/

like image 1
matteomattei Avatar answered Oct 17 '22 12:10

matteomattei
Sign in to Comment

Related questions

PHP OOP MySQL Programming
How do I make ELMAH log to MySQL?
How to prevent mySQL from resetting auto increment value?
How to execute *.sql mysql file in my c# application
user manual (seo + auto generate)
How to create MySQL user with limited privileges?
Limit the value of a MySQL datatype to a specific range (preferably not ENUM)
Command line foward engineering using a .mwb file?
Database Design - Employee Clocking In and Out System [closed]
sql query for top 10 records
Store mysql subquery in a variable
Mysql Where ... In ... AND where ... in ... should only match on same index
PHP, PDO, UTF8 and MySQL not playing ball
Most efficient ways to do connect to mysql database across multiple files (PHP)
MySQL: is it possible to group_concat multiple rows?
MySQL error in a procedure #1351 - View's SELECT contains a variable or parameter
How to access online mysql database in android?
Generating random latitude and longitude in MySQL
subtract minutes from a time value
PHP & MYSQL: using bcrypt hash and verifying password with database

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!