Nicholas Posted December 11, 2010 Share Posted December 11, 2010 hi, im wondering... does anyone know how to send users their password through an email (hotmail). i have the script i created myself to send everyone on the game an email and i can show the users login name. but cant figure out how to dectype the MD5 passwords in the email... tried researching on google and PHP.net but not had any luck... i did try ".md5($???['password'])." but that just sent me the numbers/letters instead of the actual password. probably got to do functions or whatever with hash bits but i dont know how... can someone help me please? Quote Link to comment Share on other sites More sharing options...
Spudinski Posted December 11, 2010 Share Posted December 11, 2010 The word "decrypt" does not exists. You can't do it. If a user looses their password, rather make them choose a new one. Quote Link to comment Share on other sites More sharing options...
Nicholas Posted December 11, 2010 Author Share Posted December 11, 2010 well you know on some games where they send you newsletters about updates and then they give you your login name and password incase you forgot it or whatever... how would i get my script to give them their actual passwords incase of the MD5 passwords. Quote Link to comment Share on other sites More sharing options...
Danny696 Posted December 11, 2010 Share Posted December 11, 2010 Just send them a new one, its impossible to decrypt an algorithm. Them games most likley store the password as plain text. Quote Link to comment Share on other sites More sharing options...
Nicholas Posted December 11, 2010 Author Share Posted December 11, 2010 oh right... okay. thanks for the information :) Quote Link to comment Share on other sites More sharing options...
Dominion Posted December 11, 2010 Share Posted December 11, 2010 Actually well we are on the subject, if you cannot reverse the hash how do sites like this exist? - http://www.md5decrypter.com/ I am aware they don’t work on slated passwords etc, however it does make me wonder. Back on topic, I have never seen a function that does this, sorry. Quote Link to comment Share on other sites More sharing options...
Danny696 Posted December 11, 2010 Share Posted December 11, 2010 They have a 'database' full of the md5s, and the text password to match, then it just searches Quote Link to comment Share on other sites More sharing options...
Spudinski Posted December 11, 2010 Share Posted December 11, 2010 Takes about 24h of random letter in form of md5. After which you'd be able to compare even salts. A few good sites - better than md5decrypter.com - has closed over the years. But it's not on topc - AGAIN. Quote Link to comment Share on other sites More sharing options...
Zeggy Posted December 11, 2010 Share Posted December 11, 2010 You can do this on sign up by sending their password in an email before you turn the password into a hash for the database. But why do you want to send a user's password in an email anyway? It's very insecure and the user doesn't expect you to use their password in any way other than authenticating them. Besides, what's the point of reminding a user what their password is, just seconds after they've entered it into a website? Quote Link to comment Share on other sites More sharing options...
Spudinski Posted December 12, 2010 Share Posted December 12, 2010 Additionally, you may send an unique ID to them. Then authenticate them automatically by the ID. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.