Re: [PHP] Passwords suddenly not working

Dave M G wrote: PHP List, I have a few scripts that have been around for a while. In one, is a simple login function: $query = "SELECT * FROM forum_members WHERE memberName = '" . $username . "' AND passwd = MD5('" . $password . "')"; $result = mysql_query($query); This was working fine,

Re: [PHP] Passwords?

Chris W. Parker wrote: Jochem Maas on Sunday, March 06, 2005 5:24 AM said: that said you still don't want this file or this string to get into the hands of evilhaxors - best to keep this file (one with the encrypted pwd in it) outside of the docroot. Why encode it a

RE: [PHP] Passwords?

Jochem Maas on Sunday, March 06, 2005 5:24 AM said: > that said you still don't want this file or this string to get into > the hands of evilhaxors - best to keep this file (one with the > encrypted pwd in it) outside of the docroot. Why encode it at all then? If s

Re: [PHP] Passwords?

On Sunday 06 March 2005 21:03, AdamT wrote: > If the password is stored in between the tags, then it > shouldn't get sent to the browser unless you specifically send it > there. For *any* php code it is best to use tags. These tags will work on *all* php enabled webservers. The short tags is

Re: [PHP] Passwords?

Cheers, I'll give your suggestions a go. Jochem Maas wrote: [EMAIL PROTECTED] wrote: Hi Rory You can use crypt to encode a password, let say you want the password to be "my password", create a new php file : echo crypt("my password"); then you get a unique encoded string something like 'A

Re: [PHP] Passwords?

[EMAIL PROTECTED] wrote: Hi Rory You can use crypt to encode a password, let say you want the password to be "my password", create a new php file : echo crypt("my password"); then you get a unique encoded string something like 'ABC12Fdfi654sdfkfpr67UPL' copy it and delete the php file in

Re: [PHP] Passwords?

On Sun, 06 Mar 2005 11:34:39 +, rory walsh <[EMAIL PROTECTED]> wrote: > I want to create a simple as possible password script, how secure is it > to have the password actually appear in the script? I only need one > password so I thought that this would be more straightforward than > having a f

RE: [PHP] Passwords?

Hi Rory You can use crypt to encode a password, let say you want the password to be "my password", create a new php file : echo crypt("my password"); then you get a unique encoded string something like 'ABC12Fdfi654sdfkfpr67UPL' copy it and delete the php file in your password validatio

RE: [PHP] Passwords and SSH port forwarding (was: Alternative to phpMyAdmin)

Excellent tip, Hank! I didn't know SSH tunneling was that easy, I haven't had the necessity to use SSH at all yet. -Original Message- From: Hank Marquardt [mailto:[EMAIL PROTECTED]] Sent: Friday, July 13, 2001 6:42 PM To: Egan Cc: [EMAIL PROTECTED] Subject: Re: [PHP] Pas

Re: [PHP] Passwords and SSH port forwarding (was: Alternative to phpMyAdmin)

Works just fine ... as does postgres -- ssh -N -2 -f -C -c blowfish -L3306:yourdatabase.server.here:3306 [EMAIL PROTECTED] or the other usual tricks work too ... like going through a firewall (fyi ... clear text on the *other* side of the firewall): ssh -N -2 -f -C -c blowfish -L3306:db_behind

RE: [PHP] Passwords?

> I have some field error checking going on ... and when a user > (say) doesn't fill in a field correctly, my error page comes up telling > them. They then must click on their browsers button > and make the changes. > Now -- I have a password field, and when they click back, > they are force

Re: [PHP] Passwords?

At 22.05.2001 23:27, you wrote: >I have some field error checking going on ... and when a user (say) doesn't >fill in a field correctly, my error page comes up telling them. They then >must click on their browsers button and make the changes. > >Now -- I have a password field, and when they clic

RE: [PHP] Passwords?

This link Back will work on javascript enabled machines... the truly failsafe way is to stuff their data in a session or in the database and pass an id back to the original script. You can also make your form to fill out a seperate file, which your first script includes, and if there is a data e