Edward Peloke wrote:
No. You send them a new password. Ideally, the only person who should know the unencrypted user's password is the user themselves.I don't want to store my users passwords in the db as clear text so I know I can use md5(). But, what do I do when a user has forgotten his/her password and I need to send it to them? Can I reverse md5()?
HTH
Chris
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php