password-protection

I've been reading about the Gawker incident and several articles have cropped up regarding only using bcrypt to hash passwords and I want to make sure my hashing mechanism is secure enough to avoid switching to another method. In my current application I have opted for a PBKDF2 implementation utilising sha2-512 and a minimum of 1000 iterations. Can I ask for opinions on using PBKDF2 vs Bcrypt and whether or not I should implement a change? You're good with PBKDF2, no need to jump to bcrypt. Although, the recommendation to use 1000 iterations was made in year 2000, now you'd want much more.

This question already has an answer here: How to secure database passwords in PHP? 16 answers I have a small PHP application storing data in a MySQL database. Currently username / password are hard-coded in the PHP code. A situation I do not really like, for example, since the code is also available in a repository. The best idea I have is to move the data from the code to a configuration file (excluded from the repository), and somehow encode it, so is not directly readable (obfuscation). Is there any better and easy to use way to solve the issue? $link = mysql_connect('localhost', 'mysql

Is it possible to disable completely the secure storage password of Eclipse? I am running Eclipse Helios on Windows 7. exo_cw To disable the master password prompt you have to specifiy a file containing the password with -eclipse.password , see Eclipse SDK Help and Bug 241223 . The complete procedure is as follows (this is on Linux, on Windows it should work as well if you change the paths): Exit Eclipse Delete the directory ~/.eclipse/org.eclipse.equinox.security Create a text file containing your master password, e.g. echo "secret" > ~/.eclipse/master Add to the very top of eclipse.ini,

how would you create an activity that only runs when the application is started for the first time ever and provides the user with a screen to input a pin and "unlock" the application First time ever meaning when the application is first installed and started for the first time. As in the FIRST EVER time it is opened. You can use android preferences for show login screen only for the first time. You can set flag in preference and check it when application start. You can always start with something like "splash screen" activity, that will only check in database/ shared preferences if user is

i want my app to have a password protected uninstall ... (like app lock) im using folling code it works on Android 2.3 but not on Android 4+ versions MANIFEST FILE <receiver android:name="fyp.invisibleink.UninstallIntentReceiver" > <intent-filter android:priority="0" > <action android:name="android.intent.action.QUERY_PACKAGE_RESTART" /> <data android:scheme="package" /> </intent-filter> </receiver> Uninstalling Activity code ublic class Uninstalling extends Activity { @Override protected void onCreate(Bundle savedInstanceState) { super.onCreate(savedInstanceState); setContentView(R.layout