Tweet
Hello everyone,
I use CREATE LOGIN to add user to the SQL Server 2005, but now I give the password in clear text. Is it possible to spy on this password (in the connection or from inside the SQL Server with the Query Analyzer,...)
I was thinking about prehashing the password before sending it, but I have no idea how I should hash the password, since there are different algorithms to do this.
1. Are my concerns about spying on the password really neccesary.
2. How do I prehash passwords (any Win API routines?).
Thanks in advance,
Andre
I use CREATE LOGIN to add user to the SQL Server 2005, but now I give the password in clear text. Is it possible to spy on this password (in the connection or from inside the SQL Server with the Query Analyzer,...)
I was thinking about prehashing the password before sending it, but I have no idea how I should hash the password, since there are different algorithms to do this.
1. Are my concerns about spying on the password really neccesary.
2. How do I prehash passwords (any Win API routines?).
Thanks in advance,
Andre