Caution! - Many of these posts are creepy-old in the Ruby on Rails world (before 1.0!)
The :author => Charles Abbott now blogs here

SHA1 - A quick update

2006-03-15   [ 0 comments ]

When life gives you Al2O3 (Corundum), make a ruby! When users give you passwords, make a secure hash algorithm. Well at least in this case we didn't have to make the algorithm. Instead all I have to do is use it.

Although I had the intention of posting this along with some additional material, I decided that this short post will stand on its own accord. And it should be considered important, especially since it has to do with data security.

So, I have my authentication / authorization system and now I need to make the data in my database a bit more secure (particularly the passwords for my users). So in one line I will be able to do that for my administrative portion.

Simply open up the Administrator model and add this line:

hashpasswd = Digest::SHA1.hexdigest(password)

That was simple! All I did was take the input (password) and pass it through the Secure Hash Algorithm1 to output a hash to my variable hashpasswd. Now just compare that with the password in the database (which also needs to be hashed!) and everything is good to go!

So how would I have done something similar in PHP? Well it actually takes less code in PHP to hash some input. Just provide the following line of code for PHP:

sha1($password)

It certainly saves a bit in typing, but no different in effectiveness.

Yes, this very well might be the shortest post I have made. But without a little motivation, you might not have any motivation at all. :-)

:author => "Charles Abbott"
Converting to Ruby on Rails
 

What?

Who?              Link?



All Posts
Frameworks Good or Bad?   :date => "2007-10-06"
Where is ForTheCode.com Going?   :date => "2007-09-23"
Refactoring - Vital to Software Development   :date => "2007-09-23"
Mongrel Cluster a quick note - and extra notes   :date => "2007-05-20"
Linux Mongrel and Rails   :date => "2007-05-15"
form_remote_tag revisited   :date => "2007-01-07"
How To: Ubuntu 6.10 Edgy on Rails part 3   :date => "2006-12-30"
How To: Ubuntu 6.10 Edgy on Rails part 2   :date => "2006-12-24"
How To: Ubuntu 6.10 Edgy on Rails   :date => "2006-12-22"
verify ... 5.times do cycle   :date => "2006-09-25"
country_select, country_options_for_select, mail_to   :date => "2006-09-05"
Generate and Send Email in Rails   :date => "2006-08-26"
FDF Model, gsub, and send_data   :date => "2006-08-18"
Active Directory Authentication with acts_as_authenticated   :date => "2006-08-17"
Apache2 proxy with Lighttpd - FastCGI for Rails   :date => "2006-08-08"
reverse! && a simple file Upload Class   :date => "2006-07-29"
send_file - a link to download a file   :date => "2006-07-24"
Environments (production, development, test) and cache_pages   :date => "2006-07-04"
.class .methods .instance_variables   :date => "2006-06-14"
select_tag :multiple => true   :date => "2006-06-01"
FileUtils, action_controller rescues   :date => "2006-05-20"
file_field_tag, File.size, File.path, FileUtils.mv   :date => "2006-05-15"
javascript_include_tag, stylesheet_link_tag   :date => "2006-05-02"
submit_to_remote, form_remote_tag, script.aculo.us   :date => "2006-04-30"
periodically_call_remote, simple_format   :date => "2006-04-26"
observe_field - Ajax!   :date => "2006-04-21"
h method, TextHelper, sanitize(), strip_tags()   :date => "2006-04-15"
Rails API :My API [.count(), link_to, text_area :size]   :date => "2006-04-13"
Rails - HTML Select Tag   :date => "2006-04-05"
Pruning Old Sessions   :date => "2006-03-21"
If Elsif Else, and Searching Too!   :date => "2006-03-17"
SHA1 - A quick update   :date => "2006-03-15"
Initialized! good, Authorized? Great! part 2   :date => "2006-03-11"
Initialized! good, Authorized? Great!   :date => "2006-03-08"
Forms and Routing in RoR   :date => "2006-03-06"
My First RoR Post !   :date => "2006-03-05"