Re: [PHP] decrypting values in MYSQL
At 09:44 AM 8/2/2002 +0800, Michael P. Carel posted the following... >so you mean there's no way to decrypt that. I wan't to create a Password >Reminder to my script, that would email them their password if ever they >forgot it. >Is there any suggestion/comments? You can, instead, have it email to the address-of-record a new password, generated randomly. Check out http://www.dacode.org -- it's how it handles forgotten passwords. :) Glenn --- The original portions of this message are the copyright of the author (c)1998-2002 Glenn E. Sieb.ICQ UIN: 300395IRC Nick: Rainbear "All acts of Love and Pleasure are Her rituals"-Charge of the Goddess -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] decrypting values in MYSQL
This was just discussed. Either you reset the password a new one, and email them the new password... or, you send them a web page to change their email address. If they don't want to change it, they don't have to. Along the same lines, you can email them a code to enter somewhere to change their password. The idea for the second one is that the system can't be abused as easily. Even if someone attempts to change the password of another user, the other user doesn't have to change the password if they don't want to... Just don't store it plain-text... ---John Holmes... - Original Message - From: "Michael P. Carel" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, August 01, 2002 9:44 PM Subject: Re: [PHP] decrypting values in MYSQL > so you mean there's no way to decrypt that. I wan't to create a Password > Reminder to my script, that would email them their password if ever they > forgot it. > Is there any suggestion/comments? > > >You can't view it anymore. You can compare a string with > >PASSWORD('string') to see if they match. > > >Julio Nobrega > >Pode acessar: > >http://www.inerciasensorial.com.br > > Hi to all, > > > > How could i decrypt the encrypted data in MYSQL? > > I've inserted values in mysql using the PASSWORD( $userpassword ) function > > to encrypt all user password. > > Example: > > Insert into Users_Table set Password_Field=PASSWORD('$userpassword'); > > > > But i don't know how to select to view the $userpassword value. > > > > Is there anyone who could help? Thanks in advance. > > > > > > Mike > > > > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] decrypting values in MYSQL
on 02/08/02 11:44 AM, Michael P. Carel ([EMAIL PROTECTED]) wrote: > so you mean there's no way to decrypt that. I wan't to create a Password > Reminder to my script, that would email them their password if ever they > forgot it. > Is there any suggestion/comments? You can't! If you choose to encrypt the passwords on the way in (with either MySQL's PASSWORD() or PHP's md5(), [as you should for most sites] it's a one-way encryption. Hence, you can't do a password reminder. You can reset the password though (make a new password, and send it them via email). You can also try emailing them the password when they originally sign up, so they *might* keep the email handy when they need it. Sorry, what you've done can't be undone you just need to figure out what to do now... Justin -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] decrypting values in MYSQL
so you mean there's no way to decrypt that. I wan't to create a Password Reminder to my script, that would email them their password if ever they forgot it. Is there any suggestion/comments? >You can't view it anymore. You can compare a string with >PASSWORD('string') to see if they match. >Julio Nobrega >Pode acessar: >http://www.inerciasensorial.com.br > Hi to all, > > How could i decrypt the encrypted data in MYSQL? > I've inserted values in mysql using the PASSWORD( $userpassword ) function > to encrypt all user password. > Example: > Insert into Users_Table set Password_Field=PASSWORD('$userpassword'); > > But i don't know how to select to view the $userpassword value. > > Is there anyone who could help? Thanks in advance. > > > Mike > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] decrypting values in MYSQL
Hi to all, How could i decrypt the encrypted data in MYSQL? I've inserted values in mysql using the PASSWORD( $userpassword ) function to encrypt all user password. Example: Insert into Users_Table set Password_Field=PASSWORD('$userpassword'); But i don't know how to select to view the $userpassword value. Is there anyone who could help? Thanks in advance. Mike -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php