CodeCharge Studio
search Register Login  

Visual Web Reporting

Visually create Web Reports in PHP, ASP, .NET, Java, Perl and ColdFusion.
CodeCharge.com

YesSoftware Forums -> CodeCharge Studio -> ASP

 Recover encrypted password

 Print topic Send topic

Author Message
cazzani

Posts: 11
Posted: 08/01/2007, 8:09 AM
I am using the new CCS 3.2 feature to encrypt login passwords stored in the database.

Is there and easy way to add a 'recover password' feature to my project?

I am using ASP and in my project settings I selected: -encrypt password using code expressions MD5(password)

Stefano
View profile  Send private message
DonB
Posted: 08/02/2007, 10:19 AM
You can't reverse MD5 encryption. You'd have to generate a new password and
send that to the user, or otherwise implement a feature to allow the user to
enter a new password and overwrite the one that was forgotten.

--
DonB

http://www.gotodon.com/ccbth


"cazzani" <cazzani@forum.codecharge> wrote in message
news:646b0a2181f2c2@news.codecharge.com...
> I am using the new CCS 3.2 feature to encrypt login passwords stored in
the
> database.
>
> Is there and easy way to add a 'recover password' feature to my project?
>
> I am using ASP and in my project settings I selected: -encrypt password
using
> code expressions MD5(password)
>
> Stefano
> ---------------------------------------
> Sent from YesSoftware forum
> http://forums.codecharge.com/
>
cazzani

Posts: 11
Posted: 08/03/2007, 12:12 AM
Could any of the other CCS 3.2's supported encryption method be used to recover password?
View profile  Send private message
Benjamin Krajmalnik
Posted: 08/03/2007, 11:32 AM
Actually, the safest password schemes are unidirectional hashes, where you
cannot "recover" them.
It really does not matter as long as you have the ability to reset the
password.
One way in which you can do it is have your system send an email with some
sort of key, which you store in a database, going to a page on your system.
This would check for the existence of the key in the database (whose row
would also contain an identifier to the user). If the row exists, you can
then set the nexessary session variables and redirect him to a "Password
Reset" page.

"cazzani" <cazzani@forum.codecharge> wrote in message
news:646b2d54744c44@news.codecharge.com...
> Could any of the other CCS 3.2's supported encryption method be used to
> recover
> password?
> ---------------------------------------
> Sent from YesSoftware forum
> http://forums.codecharge.com/
>


Add new topic Subscribe to topic   


These are Community Forums for users to exchange information.
If you would like to obtain technical product help please visit http://support.yessoftware.com.

Web Database

Join thousands of Web developers who build Web applications with minimal coding.
CodeCharge.com

Home   |    Search   |    Members   |    Register   |    Login


Powered by UltraApps Forum created with CodeCharge Studio
Copyright © 2003-2004 by UltraApps.com  and YesSoftware, Inc.