error geting password of vbforums

**purusingh1** · Mar 3rd, 2004, 03:01 AM

Actually my userif is purusingh and email is [email protected] .
I have forgotten my password and I am requesting my password from long time. But couldn't get it?

**mendhak** · Mar 3rd, 2004, 07:31 AM

Probably going to some other email addy?

**veryjonny** · Mar 3rd, 2004, 08:25 AM

Without password, how did u loginin the forums?

and how did u make this post

**mendhak** · Mar 3rd, 2004, 08:44 AM

Originally posted by veryjonny
Without password, how did u loginin the forums?

and how did u make this post

purusingh <> purushing1

!

**veryjonny** · Mar 3rd, 2004, 08:50 AM

Originally posted by mendhak
purusingh <> purushing1

!

I didnt notice that

**MartinLiss** · Mar 3rd, 2004, 02:41 PM

purusingh, I move your post to Forum Feedback and sent you your password.

**The Hobo** · Mar 6th, 2004, 01:37 AM

Originally posted by MartinLiss
purusingh, I move your post to Forum Feedback and sent you your password.

You sent him his password? Does vBulletin not encrypt them in the database? Are they that easy to get at?

**visualAd** · Mar 6th, 2004, 04:10 AM

Originally posted by The Hobo
You sent him his password? Does vBulletin not encrypt them in the database? Are they that easy to get at?

Maybe it's a new password.

**MartinLiss** · Mar 6th, 2004, 01:01 PM

Originally posted by The Hobo
You sent him his password? Does vBulletin not encrypt them in the database? Are they that easy to get at?

I don't know how they are stored and I can't see them. All there is (at least to my knowledge) is an Admin function to "Send User Their Password".

**The Hobo** · Mar 6th, 2004, 11:38 PM

Originally posted by MartinLiss
I don't know how they are stored and I can't see them. All there is (at least to my knowledge) is an Admin function to "Send User Their Password".

Well, it can't be md5() encryption, then, since it's irreversable.

**visualAd** · Mar 7th, 2004, 04:24 AM

Originally posted by The Hobo
Well, it can't be md5() encryption, then, since it's irreversable.

For $85 you can buy the source code and find out exaclty how they are encrypted.

My guess would be they use PHP's mcrypt extension.

Another method of doing it would be to md5 hash the password and then when the user requests it, the forum software generates a new password and sends that.

**MartinLiss** · Mar 7th, 2004, 11:09 AM

Originally posted by visualAd
...Another method of doing it would be to md5 hash the password and then when the user requests it, the forum software generates a new password and sends that.

No, that doesn't happen.

**MartinLiss** · Mar 8th, 2004, 10:45 AM

Oh, I just tried it and you're right! I never knew that.

**The Hobo** · Mar 8th, 2004, 02:39 PM

Cool. I'm still curious how vBulletin store the password, though. Is there anyone out there that knows?

Maybe I should look around their site and see if it says. Feel free to shut me up if I'm getting too far off topic here.

**MartinLiss** · Mar 8th, 2004, 05:05 PM

Curiosity is OK. I just don't think anyone should post any code or SQL that would give anyone any hacking ideas.

Thread: error geting password of vbforums

Thread Tools

Display

error geting password of vbforums

Posting Permissions