mohdshaiful Posted June 3, 2009 Share Posted June 3, 2009 help...!!! problem about my site is password database store in MD5. i test my website forget password form... then i get the mail... why it sent like this LoginId : epul2 Password: 39732a1d20b2361fd7730e06eb2765f1 <<<md5 how to fix it ? Quote Link to comment Share on other sites More sharing options...
saeed_violinist Posted June 3, 2009 Share Posted June 3, 2009 If you mean you want to convert MD5 back to its orginal, it is almost impossible. they usually RESET the password for users who forgot theire passwords. so it is better to make a script to generate a temporary password and convert it into MD5, while sending the temporary password to the user's email (at the same time the md5 equivalent of that password should be stored in the database). Quote Link to comment Share on other sites More sharing options...
aschk Posted June 3, 2009 Share Posted June 3, 2009 You can't send them their password because it's encrypted by md5. It's a 1-way encryption which cannot be reversed. What you need to do is reset their password, and send them the unencrypted version before entering the md5 version into the db. Then on login get them to set another password. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.