On Sun, Mar 18, 2007 at 07:47:59PM +0100, NoWhereMan wrote: > > ----- Original Message ----- > From: "Youness Alaoui" <[EMAIL PROTECTED]> > > NNNNOOOOOOOOOOUUUUUUUUUUU I can't reproduce it anymore d'oh d'oh d'oh! :( > > >> > ohh.. we got your password now!! :D > >> > lol, j/k > >> > >> I've changed my password already :P I trust you guys, an the password is > >> encrypted but you can never know who's reading this ML ;) > >> > > > > lol! encrypted means nothing when you know the source code :p but I just > > said that to joke, I didn't even check > > if you had the remember_password thing.. > > that's not always true ;) if you have for instance an md5 hash you decrypt > it to get the original pwd. That's why forums always reset your passwords > when you click the "forgot" link. The real problem is that if you use the > hash to signin then you don't need the original pwd anyway. > > > bye >
I know it's not always true in *THAT* case, but with amsn it's not.. it's can't be an md5 hash (which is a one way encryption) simply because we need to send the password to the msn servers, so we need to be able to decrypt it, so it's a two way encryption with a key, so knowing the code, you should know how to decrypt it from config.xml files... I did it many times already for stupid n00b users in the forum who forgot their passwords :@ anyways! KKRT ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Amsn-devel mailing list Amsn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amsn-devel