mysql lost password....problem
i test my website lostpassword,but got a problem
it sent this msg to my email
LoginId : epul
Password: 39732a1d20b2361fd7730e06eb2765f1 <--why it show this
the true password is : 851014
how to change the password mysql data
i want it sent like this msg,not like up msg
LoginId : epul
anyone can tell me where to fix it
You can't. It looks like your password is stored in your MySQL database using an MD5 hash. It's a one way hashing algorithm (can't be reversed back to it's true value).
There are two methods to combat this:
1) Stop storing the password as an MD5 hash - store it in plain value (but this is not very secure at all!)
2) Rather than email the current password, create a new one and email that.
Method two would work like this in psuedo:
1) Generate a new random password
2) Send the new password in plain text via email
2) If the mail has successfully sent store the new password in the database as an MD5 hash
i dun know how to do it, can u tell me...step-by-step
Ok, here we go.... I'm assuming a few things though:
1) You have your login/registration pages already sorted
2) The password is stored in the database using an MD5 hash
3) You know how to connect to your database and stuff as I will miss this code out
What you have is a form on a page that allows somebody to enter an email address. This email is checked against the database, and if a matching address is found an email will be sent to that address with the new password. The new password will also need storing in the database as an MD5 hash in place of the old one.
Step one: creating the form for entering an email
This form is nothing special. It loads itself (forgot_password.php) when it is submitted. It has a text input for the email address, a submit, and a hidden field so we can tell if this form has been submitted.
It is also sticky, meaning that if the user enters an incorrect email it will be automatically re-entered into the field so it can be corrected.
Step two: handle the form if it has been submitted
This PHP code will deal with the password reset if the form has been submitted. The code here is pretty complex but handles all the validation needed as well, so it should run fine if you can pick your way through it.
NOTE: This code is to be entered into the same file as the HTML code above, and must appear before the HTML code.
This might look a little complex, but if you read the helpers for each item I'm sure you'll understand. Before I finish posting I'll just draw attention to the code that creates, emails and stores the new password:
This creates a new password from a random number that has been MD5'ed and cut to 10 characters in size starting from the 3rd character - just a way to create a really random new password. This is stored in $p and might generate something like: cb962ac590 - Remember that this is the password.
Now we need to add the new password to the database, in place of the old one. We need to convert the new password to an MD5 hash for storage in the database (the MD5 in the last code was just to create something random). This MD5 hash will be something completely obscure.
If the new password was successfully saved to the database then we need to email the user to alert them that the password is now changed. We will send the password in plain text so it will read something like:
"Your password has been changed to cb962ac590."
I've really tried to make this clear for you, but if you need more help post back and I will try my hardest to trim it down.
hai.. i still ....???
here i give to u the php script.
i change the DO_CRYPT to md5
can u test the script and find how to fix the lost password problem
u can download here http://extraduit.co.cc/nxnMatrixHyip.zip
this script is already run in my hosting....before i know that problem.... pls help me :'-(
I would love to help further, but I didn't understand a word in your last post :-S
so i only can use form that u give to me to do...it, so if i request password use that form, i did not see md5 again....but that form give me a real password 12345
|All times are GMT. The time now is 01:44 PM.|
Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.1.0