I am currently using some code that I acquired years ago to hash (1 way encrypt) passwords. Now I am wondering if it is sufficient for the use. Is there either a foxpro (.prg) source that I can incorporate into my log on program or binary that I can load into memory? This is for my alarm company dispatch center, so i have a responsibility to be secure.
John
--- StripMime Report -- processed MIME parts --- multipart/alternative text/plain (text body -- kept) text/html ---
Are there legal minimum requirements for security?
Also unless all your DBF files are encrypted too it's kind of redundant.
I use this function to determine who accessed any database program (and therefore its dbfs) , and sets the authority level so only I can see the good stuff :) and it also decrypts the necessary dbf files with an external encryption program using aes256.
John
On 08/15/2016 11:30 AM, Alan Bourke wrote:
Are there legal minimum requirements for security?
Also unless all your DBF files are encrypted too it's kind of redundant.
--- StripMime Report -- processed MIME parts --- multipart/alternative text/plain (text body -- kept) text/html ---
http://doughennig.com/papers/Pub/201103dhen.pdf
downloadable here:
http://www.sweetpotatosoftware.com/spsblog/2005/09/01/VisualFoxProEncryptAnd...
On Mon, Aug 15, 2016 at 2:20 PM, John R. Sowden jsowden@americansentry.net wrote:
I am currently using some code that I acquired years ago to hash (1 way encrypt) passwords. Now I am wondering if it is sufficient for the use. Is there either a foxpro (.prg) source that I can incorporate into my log on program or binary that I can load into memory? This is for my alarm company dispatch center, so i have a responsibility to be secure.
John
--- StripMime Report -- processed MIME parts --- multipart/alternative text/plain (text body -- kept) text/html
[excessive quoting removed by server]
Thanks. I read the pdf only to find that he referenced a hash method that I am using (salted 2007 without going farther on an open forum). Unfortunately, the .fll file is compiled and I cannot see the source code to determine if it is using visual foxpro only code, or functions that are available in fpdos 2.6. This is what I use so I can run under ubuntu/dosemu or my true dos partitions. When I bought vpf 5.0 years ago, there was a 'not enough ram' error that friends were also having. It had something to do with the fact that I had excessing ram and vfp calced the ram to not enough. I was unable to find a solution and vfp did not seem to run reliably under linux/wine do I stayed with dos. I am no praying with gambas and pure basic,
John
On 08/15/2016 11:49 AM, Ted Roche wrote:
http://doughennig.com/papers/Pub/201103dhen.pdf
downloadable here:
http://www.sweetpotatosoftware.com/spsblog/2005/09/01/VisualFoxProEncryptAnd...
On Mon, Aug 15, 2016 at 2:20 PM, John R. Sowden jsowden@americansentry.net wrote:
I am currently using some code that I acquired years ago to hash (1 way encrypt) passwords. Now I am wondering if it is sufficient for the use. Is there either a foxpro (.prg) source that I can incorporate into my log on program or binary that I can load into memory? This is for my alarm company dispatch center, so i have a responsibility to be secure.
John
--- StripMime Report -- processed MIME parts --- multipart/alternative text/plain (text body -- kept) text/html
[excessive quoting removed by server]
that's "now playing with"
John
On 08/16/2016 09:08 AM, John R. Sowden wrote:
Thanks. I read the pdf only to find that he referenced a hash method that I am using (salted 2007 without going farther on an open forum). Unfortunately, the .fll file is compiled and I cannot see the source code to determine if it is using visual foxpro only code, or functions that are available in fpdos 2.6. This is what I use so I can run under ubuntu/dosemu or my true dos partitions. When I bought vpf 5.0 years ago, there was a 'not enough ram' error that friends were also having. It had something to do with the fact that I had excessing ram and vfp calced the ram to not enough. I was unable to find a solution and vfp did not seem to run reliably under linux/wine do I stayed with dos. I am no praying with gambas and pure basic,
John
On 08/15/2016 11:49 AM, Ted Roche wrote:
http://doughennig.com/papers/Pub/201103dhen.pdf
downloadable here:
http://www.sweetpotatosoftware.com/spsblog/2005/09/01/VisualFoxProEncryptAnd...
On Mon, Aug 15, 2016 at 2:20 PM, John R. Sowden jsowden@americansentry.net wrote:
I am currently using some code that I acquired years ago to hash (1 way encrypt) passwords. Now I am wondering if it is sufficient for the use. Is there either a foxpro (.prg) source that I can incorporate into my log on program or binary that I can load into memory? This is for my alarm company dispatch center, so i have a responsibility to be secure.
John
--- StripMime Report -- processed MIME parts --- multipart/alternative text/plain (text body -- kept) text/html
[excessive quoting removed by server]
I'm sorry, John, I missed the "fox/dos" in the message title.
You may want to contact Craig Boyd, the proprietor of Sweet Potato Software, to determine if he can supply you with a .PLB (the DOS equivalent of FLLs).
A quick search for "Password Hash in DOS" fails because of "Denial of Service" and "Dos and Don'ts" filling the list...
On Tue, Aug 16, 2016 at 12:08 PM, John R. Sowden jsowden@americansentry.net wrote:
Unfortunately, the .fll file is compiled and I cannot see the source code to determine if it is using visual foxpro only code, or functions that are available in fpdos 2.6.
-
Alan Bourke -
John R. Sowden -
Ted Roche