webcrypt-*.phps is the webcrypt library itself.<P>

There are two versions, one if you have libmcrypt-2.2.x installed and one for libmcrypt-2.4.x. Note that the only successfull ineroperation I have found between the two is if you use TWOFISH as the encryption (this only matters if you encrypt with 2.2.x and decrypt with 2.4.x or vice-versa. If you use the same version to do both, then you can use any cipher you choose).<P>

server.phps and client.phps are two example applications.
Client passes a message to Server. To see the two in action,
select "client.php3". Don't select "server.php3" as it won't
actually do anything useful without the ciphertext being
passed from client.<P>

The ideal use for this is in making secure cookies. If a cookie is
successfully decrypted and the signature validated, it is extremely
unlikely that the user has fiddled with it.<P>

Note that the encrypted blob is much larger than the plaintext. This is because:<ul><li>base64 encoding makes the data about 25% larger</li><li>A copy of the encryption IV (initial vector) is present.</li><li>The crypto hash (signature) is present.</li></ul><P>

Note also that the encrypted text is different every time even if the plaintext is the same. In general, you can't count on any aspect of the cipher text having any particular property and still remain secure.<P>

To try it out, type a test message, then click on GO:<P>

<form action="client.php3" method="post"><textarea name="pt" rows=10
cols=60>This is a test message.</textarea><P><input type="submit"
value="GO"></form>