Mcrypt
There are security problems with almost any Web application you develop and the simple registration form created so far is no exception. It does use HTML, JavaScript, and PHP to check the user-submitted data and it protects the user's password by encrypting it, but there is still one major concern: the user's personal data—first and last names, email address, and birthday—are stored unencrypted in a readable text file.
One solution might be to use the crypt() function to encrypt this information before storing it. However, the crypt() function has no decrypt() counterpart you could use to turn the encoded data back into readable form. Storing an encrypted email address that you could not decrypt serves no purpose at all.
It would be preferable ...
Get PHP Advanced for the World Wide Web: Visual QuickPro Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
