Welcome to Geeklog, Anonymous Thursday, February 22 2024 @ 12:24 am EST

Geeklog Forums

Unhash Passwords?


Austin

Anonymous
Is there any way for me as an admin to view user passwords in clear text?
 Quote

Status: offline

UL

Forum User
Junior
Registered: 09/09/04
Posts: 22
load the SQL database and you should find them somewhere in there. Not exactly sure how to do that though. Hope this helps.
 Quote

fg

Anonymous
There is no way how you can get the user password. Well, there is but it's bruteforcing.
 Quote

Status: offline

Dirk

Site Admin
Admin
Registered: 01/12/02
Posts: 13073
Location:Stuttgart, Germany
The database doesn't contain the passwords, but only the MD5 hash of the original password.

bye, Dirk
 Quote

Status: offline

knuff

Forum User
Full Member
Registered: 12/17/04
Posts: 340
Location:Sweden
php.net MD5

Just use the reset function, or have the users mail them a new one in case they forgot Mr. Green

There is no excuse for looking at passwords, how tempting it might be Mr. Green
Vanrillaer.com - our Family Portal
 Quote

Austin

Anonymous
There is no excuse for looking at passwords, how tempting it might be

I am setting up a separate system for an addressbook. I would like to use the same user and pass for that system. Resetting all of the passwords and having the family log back in and change them is not my idea of a fun couple of days of phone calls from everyone asking how to do things. So yes, there is an excuse for looking up their passwords.
 Quote

Austin

Anonymous
It looks like the system resets the password when it sends it out to the users. Is there any way to have the system send the current password instead of resetting?
 Quote

Status: offline

knuff

Forum User
Full Member
Registered: 12/17/04
Posts: 340
Location:Sweden
Quote by Austin: So yes, there is an excuse for looking up their passwords.


No not really Mr. Green

Your aunt might be using her bankcard number, your uncle his online bank password, ...

Why not look at integrating the user DB with your different application.
That´s the complete point of a things like geeklog and other CMS / Portal systems. One user. Single Sign On.

So, sorry it´s a good try, but not a valid reason, your nice not yet registered would still have to sign up twice. So unless you tackle it from the start, you still gonna get this problem.

If you don´t like the integrated solution, try the following.

Put their passwords to welcome, 1n1t, their name, and send them a mail with "Hey here is your initial password, please log on and set it to the same or simular password as we use on our other website."

Should do the trick.

Otherwise you will get complaints, how did you know my pw.


Greetz,
Boris


Vanrillaer.com - our Family Portal
 Quote

Austin

Anonymous
No not really

Sorry, but although that might be great for you, it is not for me. The fact that you think that what is right for you is right for everyone is humorous however. Thanks for your OPINION.
 Quote

Status: offline

knuff

Forum User
Full Member
Registered: 12/17/04
Posts: 340
Location:Sweden
Sorry for my opinion ... praying it will work

You might check out the real world and see what they have to say

google

some other people with an opinion just randomly grabbed, but there are plenty.

One of the answers to your question is

here or here or here

Anyway, the fastest way is giving them a call and ask them for their password if integration is not an option for you.

Anyway I resign from any further personal opinions on the matter.
Vanrillaer.com - our Family Portal
 Quote

maher

Anonymous
(value removed)

please give me password hashing
 Quote

Status: offline

Dirk

Site Admin
Admin
Registered: 01/12/02
Posts: 13073
Location:Stuttgart, Germany
Quote by: Anonymous

please give me password hashing


If you need to reset a user's password, this wiki article has some tips.

bye, Dirk
 Quote

All times are EST. The time is now 12:24 am.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content