For this week, here is a short post about reinventing the wheel. An interesting conversation happened on Twitter where Dave Dustin asked: “Does anybody have an example of using HASHBYTES() to replace PWDENCRYPT() per the…
Background Fellow Microsoft MVP Troy Hunt (blog | Twitter) has been operating the website Have I Been Pwned (HIBP) for a number of years now. For the record, “pwned” is pronounced like “owned” but with a…
Recently I wrote: Don’t store passwords in a database. I stand by this statement. I expected a lot of flak because I didn’t explain myself. This post goes into a bit of an explanation of…
Hello, and welcome to today’s class on storing passwords in a database. Don’t store passwords in a database. Thanks for attending. Photo by James Sutton on Unsplash.