SlanderDesign Posted May 17, 2010 Share Posted May 17, 2010 Okay, lets start, Open login.php and find line 15 and replace the whole line with this: You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Save and close! Open register.php and find line 34 and replace the whole thing with this: You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Not the best thing but it's a start! :D Quote Link to comment Share on other sites More sharing options...
Dayo Posted May 17, 2010 Share Posted May 17, 2010 yould have to add an if statment and a 2nd column for this to work effctivly otherwise users with a md5 hash wont be able to login Quote Link to comment Share on other sites More sharing options...
SlanderDesign Posted May 17, 2010 Author Share Posted May 17, 2010 Sorry, but i have tested this and work well... I forgot to add, in GRPGusers data base tables.. change the value length to 255 :) Quote Link to comment Share on other sites More sharing options...
Dayo Posted May 18, 2010 Share Posted May 18, 2010 it will work for new users only try regstering a user then change the passwords to sha1 then try to login Quote Link to comment Share on other sites More sharing options...
Djkanna Posted May 18, 2010 Share Posted May 18, 2010 Yes you'll need to either create some form of converting passwords or give them new ones if you already have a userbase. Quote Link to comment Share on other sites More sharing options...
SlanderDesign Posted May 19, 2010 Author Share Posted May 19, 2010 Ohhh... Okay yeah, I should of made it clear only to use on new games :/ Sorry people :C Quote Link to comment Share on other sites More sharing options...
SMOKEY_TEK Posted August 8, 2010 Share Posted August 8, 2010 Anybody know how we would decrypt the sha1 hash if a user forgets their password and they use "forgot.php" ? Quote Link to comment Share on other sites More sharing options...
Haunted Dawg Posted August 8, 2010 Share Posted August 8, 2010 There is no way to decrypt SHA1. Quote Link to comment Share on other sites More sharing options...
Joel Posted August 8, 2010 Share Posted August 8, 2010 Anybody know how we would decrypt the sha1 hash if a user forgets their password and they use "forgot.php" ? Just give the user a temp sha1 password and send it via email and let them reset in settings. Quote Link to comment Share on other sites More sharing options...
Danny696 Posted August 8, 2010 Share Posted August 8, 2010 There are sites offering to run a SHA1 algorithm througth a DB and check if they know ot :) Quote Link to comment Share on other sites More sharing options...
Zero-Affect Posted August 8, 2010 Share Posted August 8, 2010 Try SHA256 and add salt... simple. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.