storing passwords in SQL Server

Question

What is the recommended practice for storing user passwords in SQL Server 2008?

I am storing user details for an intranet, and would like to get advice on best way t

Answer 1

that is generally the way to do it.

Your application will handle the encrypting (and optionally decrypting), the database will just store the password.

I recommend using something stronger than the dated defacto - MD5

Most .net developers seem to like using TDES