<?PHP questions that don\\'t need their own thread ?>

The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Cavern of COBOL > <?PHP questions that don\\'t need their own thread ?>

«‹›2 »

Standish: May 21, 2001

PHP associative arrays are really hash tables underneath, so if you have a lot of valid values or a lot of values to validate it's going to faster to search by key not by value:

php:

<?
$acceptableValues=Array(
   "value1"=>1,
   "value2"=>1,
   "value3"=>1,
   "value4"=>1,
   "value5"=>1,
   ...
);

...
$val=$_REQUEST["something"];
if (isset($acceptableValues[$val]))
  // valid
else
  //invalid
...?>

rather than doing a linear search of the array (or string) every time, like in_array() (or strpos()) do.

But if you only have few values to check and you're only calling it once then use whatever code is clearest.

# ¿ Mar 26, 2010 10:41

Adbot: ADBOT LOVES YOU

# ¿ May 16, 2024 11:54

Standish: May 21, 2001

drcru posted:

As long as you're not storing credit card information in your database or working for a bank, you should be fine with just salting your hashes. Try and have a different salt for every person though.

You are correct that the MD5/SHA1 weaknesses are not (yet) a realistic way to crack hashed passwords, however why wouldn't you use SHA-256 when desigining a new system? It's one line of code to change and the attacks on MD5/SHA1 are only going to get better.

# ¿ May 17, 2010 08:54

The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Cavern of COBOL > <?PHP questions that don\\'t need their own thread ?>

«‹›2 »