xcoderx Posted May 22, 2009 Share Posted May 22, 2009 friends i the script http://www.phpeasystep.com/workshopview.php?id=21 is working but its sending password like this Your password for login to our website Your password is 34igkgk45igoljk5ikl45lkgjkbt3fvkuj more message... how to fix it? ??? Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/ Share on other sites More sharing options...
Masna Posted May 22, 2009 Share Posted May 22, 2009 Are you md5 encrypting the passwords? If you are, you can't provide a password recovery feature: md5 is a one-way encryption. Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839793 Share on other sites More sharing options...
MadTechie Posted May 22, 2009 Share Posted May 22, 2009 your need to change the password, then send them the new one.. thats the whole point of ONE WAY encryption Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839794 Share on other sites More sharing options...
xcoderx Posted May 22, 2009 Author Share Posted May 22, 2009 is there anywhere i can that script? like the one worked above Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839795 Share on other sites More sharing options...
MasterACE14 Posted May 22, 2009 Share Posted May 22, 2009 maybe if you pay someone they'll do it for you. Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839796 Share on other sites More sharing options...
xcoderx Posted May 22, 2009 Author Share Posted May 22, 2009 ok my register is like this $pass = md5($pass); how to not make it md5? could atleast someone help in this? Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839797 Share on other sites More sharing options...
Masna Posted May 22, 2009 Share Posted May 22, 2009 ok my register is like this $pass = md5($pass); how to not make it md5? could atleast someone help in this? I'm starting to believe you're trolling this board... Remove that line altogether, and md5 encryption will stop. Edit: Actually, I'm now positive this is some seriously hardcore trolling. I'm about to potentially violate TOS Rule #14: Can someone lock this? Daniel0 perhaps? Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839798 Share on other sites More sharing options...
MasterACE14 Posted May 22, 2009 Share Posted May 22, 2009 you leave registering how it is with the md5(); you make a separate file which changes the users password to something else, updates it in the database, and e-mails it to them. $newpass = "hello"; mail(); // mail it to them $newpass = md5($newpass); mysql_query() // update pass in database to new one Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839800 Share on other sites More sharing options...
xcoderx Posted May 22, 2009 Author Share Posted May 22, 2009 lol removing the md5 line only gives error Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839802 Share on other sites More sharing options...
Masna Posted May 22, 2009 Share Posted May 22, 2009 lol removing the md5 line only gives error The sad thing is that you're actually considered an enthusiast... Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839803 Share on other sites More sharing options...
xcoderx Posted May 22, 2009 Author Share Posted May 22, 2009 eish i guess i better drop the ideo, thanks alot to u all for ur help and time Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839804 Share on other sites More sharing options...
MasterACE14 Posted May 22, 2009 Share Posted May 22, 2009 The sad thing is that you're actually considered an enthusiast... way over his head lol Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839809 Share on other sites More sharing options...
MadTechie Posted May 22, 2009 Share Posted May 22, 2009 If you wish to remove the MD5 (NOT recommened) then your need to remove it from ALL points where its used ie Signup & Login but your also need to reset ALL current passwords MasterACE14 code you leave registering how it is with the md5(); you make a separate file which changes the users password to something else, updates it in the database, and e-mails it to them. $newpass = "hello"; mail(); // mail it to them $newpass = md5($newpass); mysql_query() // update pass in database to new one is valid and will work here a slightly more complete code (untested) <?php $user = "Bob"; $newpass = "hello"; $Q = sprintf("SELECT ID,email FROM members WHERE name='%s' LIMIT 1", mysql_real_escape_string($user)); $result= mysql_query($Q) or die($Q.mysql_error()); $row = mysql_fetch_array($result); mail($row['email'], 'password change', "Your new password ".$newpass); // mail it to them $newpass = md5($newpass); $Q = sprintf("UPDATE members SET password='%s' WHERE = id = %d",$newpass,$row['id']); mysql_query($Q) or die($Q.mysql_error()); // update pass in database to new one ?> Link to comment https://forums.phpfreaks.com/topic/159233-password-recovery/#findComment-839814 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.