A customer of ours if looking to setup a database which will store passwords for users, for obvious reasons they are looking to encrypt the passwords that are stored on the database, I know that this can be done through ASPEncrypt but its our company policy not to install outside components on working shared server environments. Im wondering if anyone knows of any other ways to do this? Any help would be greatly appreciated.

~ Dave ~
daveg@webworld.ie

If those users can/will be setup in the NT SAM then they are already encrypted. The only other solution I can think of are security templates but I am not sure if they apply to your situation, you have to be more specific.

Well, the client is looking to store the passwords in an Access or MsSQL database so I don't think that SAM or security templates would world in this situation.

~ Dave ~
daveg@webworld.ie

you don't need to have a third party component installed, there are simple scripts out there that can encrypt your password based on a private key.

I remember correctly, there were some posted on www.4guysfromrolla.com sometime back

cheers

Thanks mattan, I think I have found that article, I have attached the link below.

http://www.4guysfromrolla.com/webtech/010100-1.shtml

~ Dave ~
daveg@webworld.ie

..but do take note that running the encrypt algorithm as a script can be somewhat tasking for the server based on my previous test.

If its something you'll be doing quite often, you're better off using a third part activex dll. There are a couple of freebie ones at http://www.sloppycode.net/asp-components/ if you're interested.


cheers