Commonly passwords are encoded with MD5 on web sites. I'm considering encoding user names as file names in MD5 too. I'd use PHP on a Linux based server. Are there any drawbacks to encrypting a file name with PHP to MD5 besides being indistinguishable without decryption?
<? php
if(isset($_POST['register'])){
$username = md5($_POST['username']);
$email = htmlentities($_POST['email'], ENT_QUOTES|ENT_XML1);
$password = $_POST['password'];
$c_password = $_POST['c_password'];
$xml = new SimpleXMLElement('<user></user>');
$xml->addChild('password', md5($password));
$xml->addChild('email', $email);
$xml->asXML('users/'.$username . '.xml');
header('Location: validate.php');
die;
}
?>