------=_Part_13093_3948619.1196738096345
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
I used php crypt() function to encript password (as a simple encryption) but
how I decrypt that encrypted password because I want to send the password to
the user when it requested.
------=_Part_13093_3948619.1196738096345--
There isn't a way to un-encrypt it, it's a one-way encryption
(http://www.php.net/manual/en/function.crypt.php). The user will have to
recreate their password.=20
-----Original Message-----
From: Nishantha Pradeep [mailto:nishantha@bcsc.lk]=20
Sent: Monday, December 03, 2007 9:15 PM
To: php
Subject: [PHP-WIN] crypt() with decription
I used php crypt() function to encript password (as a simple encryption)
but
how I decrypt that encrypted password because I want to send the
password to
the user when it requested.
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
That does not sound good.
We should create some functions to decrypt it back again, agree?
Mohit Valecha
________________________________
Senior Programmer
SG Analytics Pvt. Ltd.
Tel: +91 20 2566 1897
Mobile: +91 9975570015
www.sganalytics.com
Disclaimer: "Unless indicated otherwise, the information contained in this
message is privileged and confidential, and is intended only for the use of
the addressee(s) named above and others who have been specifically
authorized to receive it. If you are not the intended recipient, you are
hereby notified that any dissemination, distribution or copying of this
message and/or attachments is strictly prohibited. SG Analytics Pvt. Ltd.
accepts no liability for any damage caused by any virus transmitted by this
email. Furthermore, the company does not warrant a proper and complete
transmission of this information, nor does it accept liability for any
delays. If you have received this message in error, please contact the
sender and delete the message. Thank you."
-----Original Message-----
From: Bill Bolte [mailto:billb@hightouchinc.com]
Sent: Tuesday, December 04, 2007 7:42 PM
To: php
Subject: RE: [PHP-WIN] crypt() with decription
There isn't a way to un-encrypt it, it's a one-way encryption
(http://www.php.net/manual/en/function.crypt.php). The user will have to
recreate their password.
-----Original Message-----
From: Nishantha Pradeep [mailto:nishantha@bcsc.lk]
Sent: Monday, December 03, 2007 9:15 PM
To: php
Subject: [PHP-WIN] crypt() with decription
I used php crypt() function to encript password (as a simple encryption)
but
how I decrypt that encrypted password because I want to send the
password to
the user when it requested.
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Mohit wrote:
> That does not sound good.
>
> We should create some functions to decrypt it back again, agree?
>
>
> Mohit Valecha
> ________________________________
>
from the manual:
crypt One-way string encryption (hashing)
Note: There is no decrypt function, since crypt() uses a one-way algorithm.
If you do not understand what hashing means, please look it up - crypt
only goes one way. If you need to decrypt information later, use a
different encryption mechanism.
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
I can only agree Bill and Elizabeth.
@Nishantha:
Do you only need a password-recovery function for registered users? Then
simply create an random-string, save it in an extra column of your Data
Stock and give it to the user. Also you can - as Elizabeth wrote - use an
two-way-decryption and give the user the decrypted version. But that'll open
a huge securityhole in your application. Fact: Users will use the same
password in different systems. So first: Can and will the User trust you?
Second: Can you trust the people that can look into the database/file/stock?
Third: Can you by 100% trust your sourcecode, so that never a third party
hacks your system and decryps all passwords?
I would ever prefer an one-way-function when the project afford it.
--
Mit freundlichen Grüßen / Best Regards
Oliver Espeter
""Bill Bolte""
news:013FC758865CF645976E313AEB6A709905FB9A24@htmail.hightou chinc.com...
There isn't a way to un-encrypt it, it's a one-way encryption
(http://www.php.net/manual/en/function.crypt.php). The user will have to
recreate their password.
-----Original Message-----
From: Nishantha Pradeep [mailto:nishantha@bcsc.lk]
Sent: Monday, December 03, 2007 9:15 PM
To: php
Subject: [PHP-WIN] crypt() with decription
I used php crypt() function to encript password (as a simple encryption)
but
how I decrypt that encrypted password because I want to send the
password to
the user when it requested.
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php