In my spare time, I like to tin­ker with code to famil­iar­ize myself with it. This is help­ful should I want to incor­po­rate it into web apps and/or sites I am build­ing lat­er. It def­i­nite­ly beats stum­bling through the dark try­ing to feel my way through an API or func­tion I have nev­er dealt with.

This brings me to my point, secu­ri­ty. I have played with md5, PHPass, and a lit­tle bit with Blow­fish. I know that most, if not all, cipher encryp­tion can be bro­ken with brute force attacks. I mean, even a bro­ken clock is right twice a day. So the chances of you get­ting the pass­word guessed, giv­en enough chances, is bound to pass. That’s why attempt have been put into place.

My ques­tion is, is there a bet­ter way of safe­guard­ing your web­site and the data there­in? I want to cre­ate some­thing that doesn’t has­sle the user, like a login and fol­low up with email con­fir­ma­tion. It should be smooth, seam­less, and easy for the end-user to use. Oth­er­wise, you lose visitors/clients/etc all due to over­do­ing it on your secu­ri­ty.

Since I have yet to find this “per­fect solu­tion”, I guess my only choice is to go back to the draw­ing board. Looks like I will be tin­ker­ing at it for some time. That’s not nec­es­sar­i­ly a bad thing, though, “Idle hands are the Devil’s work­shop” after all.

Tags: , , , , , , ,

Leave a Reply

Your email address will not be published. Required fields are marked *