Get Help:Ask a Question in our Forums|Report a Bug|More Help Resources
Last post Jan 30, 2013 09:22 AM by Ruchira
Jan 26, 2013 04:34 PM|LINK
Jan 26, 2013 05:02 PM|LINK
Jan 26, 2013 05:19 PM|LINK
I assume you are referring to the SqlMembership Provider, which uses SHA1 by default, but you can specify a different algortihm in your web.config: http://msdn.microsoft.com/en-gb/library/system.web.security.sqlmembershipprovider.passwordformat.aspx
In any event, if the SqlMembership Provider doesn't work for you, you can always implement your own provider.
Jan 30, 2013 09:22 AM|LINK
I heard that the hashing algorithm for asp.net membership is sha-1, but I've seen in most articles that it is no longer safe
Technically speaking, nothing is safe. There are still ways to hack any kind of security system. So nothing will be 100% secure and perfect.
also I would like to know if most professional developers are using asp.net membership
Of course I do use membership provider for most of the applications. Basically it provides a good security for a web application.
or do they come up with their own solution
Personally speaking, I do not. But I'm sure there are many situations where we need to implement our own. For more refernece, you can refer to the articles Brok has provided.
Please 'Mark as Answer' if this post helps you.