grpg-v1 Sha1 Passwords [MOD]

[SlanderDesign]

Okay, lets start,

Open login.php and find line 15 and replace the whole line with this:

 

You're unable to view this code.

Viewing code within this forum requires registration, you can register here for free.

 

Save and close!

Open register.php and find line 34 and replace the whole thing with this:

 

You're unable to view this code.

Viewing code within this forum requires registration, you can register here for free.

 

Not the best thing but it's a start! :D

[Dayo]

yould have to add an if statment and a 2nd column for this to work effctivly otherwise users with a md5 hash wont be able to login

[SlanderDesign]

Sorry, but i have tested this and work well...

I forgot to add, in GRPGusers data base tables.. change the value length to 255

:)

[Dayo]

it will work for new users only try regstering a user then change the passwords to sha1 then try to login

[Djkanna]

Yes you'll need to either create some form of converting passwords or give them new ones if you already have a userbase.

[SlanderDesign]

Ohhh...

Okay yeah, I should of made it clear only to use on new games :/

Sorry people :C

[SMOKEY_TEK]

Anybody know how we would decrypt the sha1 hash if a user forgets their password and they use "forgot.php" ?

 

[Haunted Dawg]

There is no way to decrypt SHA1.

[Joel]

Anybody know how we would decrypt the sha1 hash if a user forgets their password and they use "forgot.php" ?

 

Just give the user a temp sha1 password and send it via email and let them reset in settings.

[Danny696]

There are sites offering to run a SHA1 algorithm througth a DB and check if they know ot :)

[Zero-Affect]

Try SHA256 and add salt... simple.