ASP.NET密码记录 [英] Asp.net password history

问题描述

亲爱的大家，

我想知道如何从数据库中为历史记录加密码并在asp.net中检入

检查以下标准.

1)密码历史记录应设置为5个或更多

2)密码应区分大小写.

3)强制密码到期，包括最小年龄和最大年龄(最小年龄1和最大年龄30天)，可以在运行时更改.

Dear guys,

I want to know how to password history from database and check in asp.net

check following critriea.

1) Password history should be set to 5 or more

2) Password should be case-sensitive.

3) Enforce password expiry including Minimum age and maximum age (min. age 1 & max. age 30 days) This can be changed on run-time.

推荐答案

那里.Net中没有内置任何东西可以提供此信息.您将必须编写自己的解决方案来创建密码审核跟踪，但这将涉及存储密码

实际上，就安全性而言，存储普通密码是最糟糕的方法.

管理员不能访问纯密码，这是大多数应用程序提示您创建一个新密码的原因，因为密码是哈希值，并且哈希值无法还原为纯文本.

如果需要跟踪密码，则需要编写一个自定义的成员资格提供程序以对其进行跟踪.

There is nothing built into .Net that will provide this information. You would have to write your own solution to create an audit trail of passwords but this would involve storing passwords

In fact, storing plain passwords is the worst approach in terms of security.

Administrator must not have access to plain passwords, this the reason of most of applications prompts you to create a new one, because passwords are hashed and hashing prevents from reverting to plain text.

If you need to track passwords, you''ll need to write a custom membership provider tracking them.

这篇关于ASP.NET密码记录的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！