> Bruce Momjian <pgman@candle.pha.pa.us> writes:
> > Salt is currently defined as char[2]. Should I encode the rand() as
> > char[4] and send that, or skip null and still encode it as char[4].
>
> There's no need to avoid nulls here, AFAICS. Making the salt a
> fixed-length binary string seems like the best bet.
OK, working on that now. The EncryptMD5 function accepts username
string and 4-byte salt, so I have to pass the length of the salt to the
function. Can't rely on strlen().
--
Bruce Momjian | http://candle.pha.pa.us
pgman@candle.pha.pa.us | (610) 853-3000
+ If your life is a hard drive, | 830 Blythe Avenue
+ Christ can be your backup. | Drexel Hill, Pennsylvania 19026