most likely its inserted simply with a sql line like...
insert into table (password) values (md5('password')) where...
or
insert into table (password) values (encrypt('password')) where...
your best bet, is to find the password insert code and see if it
uses a mysql built in, a php/perl/lang built in or lib or implements
its own.
then, use that information to update the password.
another option might be to null the password and see if you can log
in with no password.
Dean
On Thu, June 1, 2006 10:24 pm, Voytek Eymont wrote:
> I'm just installing a cms application that has it's admin password stored
> in a MySQL table, I can not find what password I'm supposed to use to
> login;
>
> the actual string stored doesn't get accepted as password, so, it's
> obviously encrypted or mungled with some function;
>
> is it likely that the encyption is done with something that can be easily
> reversed, is there a way to try 'decrypting' the string in MySQL table to
> see what the password is ?
> or is it a proper encryption ? in which case I have no intention of trying
> to crack it
>
> --
> Voytek
>
> --
> SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
> Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
>
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
