RE: [PHP] crypt salt question

@lists.php.net Subject: Re: [PHP] crypt salt question No chance. Unless you have the salt stored along each password, your passwords are as good as random texts Satyam - Original Message - From: "Andras Kende" <[EMAIL PROTECTED]> To: Sent: Thursday, August 30, 2007

RE: [PHP] crypt salt question

mysql ... Greets, Jan -Original Message- From: Jan Reiter [mailto:[EMAIL PROTECTED] Sent: Friday, August 31, 2007 12:07 AM To: 'Andras Kende'; PHP Mailing List Subject: RE: [PHP] crypt salt question Hi! How did you do the comparison with the PG_SQL database?? I believe

RE: [PHP] crypt salt question

rds before, when using a time based "random" salt? I understand you use the CRYPT_STD_DES method ... Greets, Jan -Original Message- From: Andras Kende [mailto:[EMAIL PROTECTED] Sent: Thursday, August 30, 2007 11:42 PM To: php-general@lists.php.net Subject: [PHP] crypt salt ques

Re: [PHP] crypt salt question

No chance. Unless you have the salt stored along each password, your passwords are as good as random texts Satyam - Original Message - From: "Andras Kende" <[EMAIL PROTECTED]> To: Sent: Thursday, August 30, 2007 11:42 PM Subject: [PHP] crypt salt question Hell

[PHP] crypt salt question

Hello, I'm trying to move some app from postgresql to mysql but unable to find out how to authenticate against the current crypted passwords with php.. insert to database: $cset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789./"; $salt = substr($cset, time() & 63, 1)

Re: [PHP] Crypt Function-- Encryption and Decryption

, 2004 8:52 PM *To:* [EMAIL PROTECTED] *Cc:* Mulley, Nikhil; [EMAIL PROTECTED] *Subject:* Re: [PHP] Crypt Function-- Encryption and Decryption What would be the use of a hash if it was easy to recover ? You can use it by storing the hash of a password, en when the user

Re: [PHP] Crypt Function-- Encryption and Decryption

What would be the use of a hash if it was easy to recover ? You can use it by storing the hash of a password, en when the user supplies you his password in a script, you hash it again... and compare those two hashes... Trying to recover the value from which the hash is the result is called crack

Re: [PHP] Crypt Function-- Encryption and Decryption

Mulley, Nikhil wrote: Hi All, I have a password file , which has all the passwords words encrypted with the Crypt Function I know that Crypt uses one-way algorithm to generate the encryptions and PHP has no Decrypt function , ( but can it be developed to have one ?) But I am eager to know whethe

[PHP] Crypt Function-- Encryption and Decryption

Hi All, I have a password file , which has all the passwords words encrypted with the Crypt Function I know that Crypt uses one-way algorithm to generate the encryptions and PHP has no Decrypt function , ( but can it be developed to have one ?) But I am eager to know whether it is really im

Re: [PHP] Re: PHP Crypt on MacOSX

out using PHP's built-in crypt() function... (as seen in /etc/shadow on a *nix server, ie. $1$sed$blaaah instead of standard MD5 hash which does not use $1$$ to store a "seed".) Ultimately, my problem exists related to the server I am using, where the server's PHP

Re: [PHP] Re: PHP Crypt on MacOSX

ver, ie. $1$sed$blaaah instead of standard MD5 hash which does not use $1$$ to store a "seed".) Ultimately, my problem exists related to the server I am using, where the server's PHP crypt (using libmcrypt) returns with the fact that CRYPT_MD5 = 0 . In researching, I have

Re: [PHP] Re: PHP Crypt on MacOSX

I use md5 all the time and OS X is my web development staging environment! I write and test all my scripts on OS X and then send off to the server. I don't use crypt, but I have never seen any problems going between the two. apache, php, mysql, rsync, ssh, scp, everything *nixy plus a nice inte

[PHP] Re: PHP Crypt on MacOSX

Kris wrote: I recently moved a site to a MacOSX based Apache/PHP server. Apparently crypt only uses DES. I read somewhere that "there is no way to get it use use MD5", which sounds hard to beleive considering the OS is BSD based. So.. here is my dilema.. My db contains usernames and passwords.

[PHP] PHP Crypt on MacOSX

I recently moved a site to a MacOSX based Apache/PHP server. Apparently crypt only uses DES. I read somewhere that "there is no way to get it use use MD5", which sounds hard to beleive considering the OS is BSD based. So.. here is my dilema.. My db contains usernames and passwords. The passw

Re: [PHP] crypt() source

RIEND! > > -Brent > > - Original Message - > From: "Matt" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, October 07, 2004 7:00 PM > Subject: [PHP] crypt() source > > > > Hi i am new to php, and i am writing a small

Re: [PHP] crypt() source

--- Matt <[EMAIL PROTECTED]> wrote: > Hi i am new to php, and i am writing a small user > authentication script. In > the manual i read about using the crypt() function > to generate a hash, and > how you can validate the password using a salt. eg > if (crypt($userinput, $hash) == $hash) > > T

Re: [PHP] crypt() source

IL PROTECTED]> Sent: Thursday, October 07, 2004 7:00 PM Subject: [PHP] crypt() source > Hi i am new to php, and i am writing a small user authentication script. In > the manual i read about using the crypt() function to generate a hash, and > how you can validate the password using a

[PHP] crypt() source

Hi i am new to php, and i am writing a small user authentication script. In the manual i read about using the crypt() function to generate a hash, and how you can validate the password using a salt. eg if (crypt($userinput, $hash) == $hash) The code works perfectly, however i am writing an appli

[PHP] crypt() source

Hi i am new to php, and i am writing a small user authentication script. In the manual i read about using the crypt() function to generate a hash, and how you can validate the password using a salt. eg if (crypt($userinput, $hash) == $hash) The code works perfectly, however i am writing an appli

Re: [PHP] crypt()

"Afan Pasalic" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > Hi everyone! > > My hosting company has global turned on. But I want to code using more safe > global off. My question though is how I can do it "locally", in my script? > I tried to use > ini_set("register_globals", FALSE

RE: [PHP] crypt()

Thanks Greg. -Original Message- From: Greg Donald [mailto:[EMAIL PROTECTED] Sent: Wednesday, August 25, 2004 4:38 PM To: Afan Pasalic Cc: [EMAIL PROTECTED] Subject: RE: [PHP] crypt() On Wed, 2004-08-25 at 16:18, Afan Pasalic wrote: > Hi everyone! > > My hosting company h

RE: [PHP] crypt()

On Wed, 2004-08-25 at 16:18, Afan Pasalic wrote: > Hi everyone! > > My hosting company has global turned on. But I want to code using more safe > global off. My question though is how I can do it "locally", in my script? > I tried to use > ini_set("register_globals", FALSE); > but it still doesn'

RE: [PHP] crypt()

Hi everyone! My hosting company has global turned on. But I want to code using more safe global off. My question though is how I can do it "locally", in my script? I tried to use ini_set("register_globals", FALSE); but it still doesn't work. On php.net manual I can find WHAT I have to do and reas

[PHP] crypt()

I have developed a PHP based site that requires users to login. Their login information is kept in a MYSQL database. Currently, I am using an IF statement to verify what the user enters as their password with what is in the the database. If they are the same a session is created and they have

[PHP] Crypt code

I want to know if you know a tool to crypt the code, all, i mean a file php, so when i open it i only see some characters without order, like zend, but free or where can i get zend or a similar tool. thanks. Carlos A. Castillo. Ingeniero de desarrollo [EMAIL PROTECTED] __

Re: [PHP] crypt() sources c# port

and protected by copyright :-) Martin Luethi wrote: download the source code: http://www.php.net/downloads.php or browse online: http://cvs.php.net the crypt() source is under php-src/ext/standard/ g. tinu Thu, 29 Jan 2004 09:54:39 +0100 gerold kathan <[EMAIL PROTECTED]>: hi there - i have use

Re: [PHP] crypt() sources c# port

download the source code: http://www.php.net/downloads.php or browse online: http://cvs.php.net the crypt() source is under php-src/ext/standard/ g. tinu Thu, 29 Jan 2004 09:54:39 +0100 gerold kathan <[EMAIL PROTECTED]>: hi there - i have user credentials in my DB encrypted with PHPs crypt() func

[PHP] crypt() sources c# port

hi there - i have user credentials in my DB encrypted with PHPs crypt() function - and should be able to do some user authentication from a c# client - where can i find the source code of PHPs crypt() function so that i can build the same function in c# ? grettings from vienna , gerold. -- PHP G

[PHP] crypt problem

Hi, I have a weird problem with the crypt function. If I do: http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] crypt problem

Hi, I have a weird problem with the crypt function. If I do: It print: 12 1 aat2dQ.feSqBI $1qjC9EADQ1x6 It seem that the second password is not encrypted in MD5 but with DES. It should be in MD5 if I read the doc correctly. My PHP version is 4.3.1 and compiled on a RedHat 7.3 with the 2.4.1

[PHP] crypt() MD5 problem on PHP 4.2.3

hi all, ' . 'CRYPT_STD_DES ' . CRYPT_STD_DES . "\n" . 'CRYPT_EXT_DES ' . CRYPT_EXT_DES . "\n" . 'CRYPT_MD5 ' . CRYPT_MD5 . "\n" . 'CRYPT_BLOWFISH ' . CRYPT_BLOWFISH . ''; echo crypt('clear_pass', '$1$salt1234$'); ?> // outputs CRYPT_STD_DES 1 CRYPT_EXT_DES 0 CRYPT_MD5 1 CR

Re: [PHP] crypt()

On Friday 14 February 2003 03:20, Edward Peloke wrote: > Is there anyway to make crypt() behave like md5() and give the same results > for the same string? All of the passwords for the db I am using had > crpyt() applied to them before they were entered in the db. How do I then > verify that pass

[PHP] crypt()

Is there anyway to make crypt() behave like md5() and give the same results for the same string? All of the passwords for the db I am using had crpyt() applied to them before they were entered in the db. How do I then verify that passwords match? I just did this: $test=crypt('test'); print $test

[PHP] crypt/MD5 Problem

Hello all, I currently having some trouble getting PHP to compile with the correct crypt() support. It seems that when compiled as a DSO under Apache crypt() will not do MD5 encryption. However if I compile PHP standalone then all works correctly. I have tried with and without mod_ssl. I h

Re: [PHP] crypt() function

Have you considered using md5() instead? On Mon, 2002-10-14 at 16:27, Adam Plocher wrote: > Hello, I am trying to authenticate a password using the crypt() > function. Here's what I got: > > if (crypt($_SERVER['PHP_AUTH_PW'],$data[1]) == $data[1]) > { > ... > } > > $data[1] being the s

[PHP] crypt() function

Hello, I am trying to authenticate a password using the crypt() function. Here's what I got: if (crypt($_SERVER['PHP_AUTH_PW'],$data[1]) == $data[1]) { ... } $data[1] being the salt.. It half-way works... If the users password is 'blah' it will authenticate fine, but if you append anyt

RE: [PHP] Crypt() =or= md5()

Anthony Ritter scribbled; > > I get the following line when trying to use the crypt() function in > php .. > > Fatal error: Call to undefined function: crypt() in c:\program > files\apache group\apache\htdocs\handleform1.php on line

RE: [PHP] Crypt() =or= md5()

onday, September 23, 2002 10:25 PM > To: [EMAIL PROTECTED] > Subject: [PHP] Crypt() =or= md5() > > I get the following line when trying to use the crypt() function in php > .. > > Fatal error: Call to undefined function: crypt() in c:\prog

[PHP] Crypt() =or= md5()

I get the following line when trying to use the crypt() function in php .. Fatal error: Call to undefined function: crypt() in c:\program files\apache group\apache\htdocs\handleform1.php on line 16 However, when I repl

[PHP] Crypt(), want to implement blowfish, how?

How can I make crypt() use blowfish encryption? It seems that my system (RH7.2 Linux) doesn't support Blowfish according to CRYPT_BLOWFISH: CRYPT_BLOWFISH = 0 How can I add blowfish support to my system if crypt() requires it? Jc PS I don't want to use mcrypt(). I just want to install whatev

[PHP] crypt(): how to make it use blowfish?

How can I make crypt() use blowfish encryption? Also it seems that my system (RH7.2 Linux) doesn't support Blowfish according to CRYPT_BLOWFISH: CRYPT_BLOWFISH = 0 How can I add blowfish support to my system if crypt() requires it? Jc PS I don't want to use mcrypt(). I just want to install w

Re: [PHP] crypt(): How to make it use blowfish?

Dan Hardiker wrote: > > Use mcrypt. See the manual. I don't want to use mcrypt :) It requires me install a separate library. Or do you mean that the only to get crypt() to use Blowfish is to install mcrypt? What does crypt() require, on a RH7.2 Linux machine, in order to use Blowfish? Jc

Re: [PHP] crypt(): How to make it use blowfish?

> My system is a linux RH7.2 box. How can I make blowfish encryption > available to PHP's crypt? Use mcrypt. See the manual. -- Dan Hardiker [[EMAIL PROTECTED]] ADAM Software & Systems Engineer First Creative Ltd -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: htt

[PHP] crypt(): How to make it use blowfish?

I'd like to use the crypt() function and have it use Blowfish encryption. However it seems that my system doesn't support blowfish encryption since I get: CRYPT_BLOWFISH = 0 My system is a linux RH7.2 box. How can I make blowfish encryption available to PHP's crypt? Jc -- PHP General Mail

[PHP] Re: PHP crypt() now adding $1$ to password

>getting added to the database (mysql) have a $1$ in front of them. These I'm pretty sure that's the way the other encryption scheme works. You've convinced your computer to switch to YYY instead of XXX for encryption routines... So now you are using the one with the 18-character salt, instea

[PHP] PHP crypt() now adding $1$ to password

Hello, I've upgraded to Mandrake 8.2 and installed a couple of apps that I later un-installed. Somewhere along the line I have hosed myself because while running php-nuke I have noticed that all of the new passwords that are getting added to the database (mysql) have a $1$ in front of them.

[PHP] PHP crypt now adding $1$ to password

Hello, I've upgraded to Mandrake 8.2 and installed a couple of apps that later un-installed. Somewhere along the line I have hosed myself because while running php-nuke I have noticed that all of the new passwords that are getting added to the database (mysql) have a $1$ in front of them. Th

Re: [PHP] Crypt Limitation?

Depends on the OS. I suggest using md() instead. On Sat, 23 Mar 2002, Steven Walker wrote: > Is there a string length limitation to crypt()? It generates the same > result for different input strings. I'm using crypt to store access > codes that are generated using uniqid. For example, if I do

[PHP] Crypt Limitation?

Is there a string length limitation to crypt()? It generates the same result for different input strings. I'm using crypt to store access codes that are generated using uniqid. For example, if I do the following: $encrypted = crypt("3c8d15c9cfe5a", "xx"); echo $encrytped;

Re: [PHP] crypt/Password

use either Mysql Password or >PHP Crypt function to encrypt the data. I know these functions are non >reversible for good reason, but how do I deal with a situation where I want >to email out a forgotton password? How can I get the passwrd back to a form >recognisable to the user?

Re: [PHP] crypt/Password

Phil <[EMAIL PROTECTED]> wrote: > Thanx, sounds like the way to go. > Still curious though whether there is anyway at all to get the original > password back to the user? not without storing it unencrypted or cracking the password with a dictionary attack. as you said, the php c

Re: [PHP] crypt/Password

word to them, and then > allow them to change the password on your site to something easier to > remember... > > Jeff > > At 11:56 PM 2/3/2002 +0800, Phil wrote: > >Hi there, > >I'm creating a user/password table that will use either Mysql Password or > >PHP

Re: [PHP] crypt/Password

What you could do is send a newly generated password to them, and then allow them to change the password on your site to something easier to remember... Jeff At 11:56 PM 2/3/2002 +0800, Phil wrote: >Hi there, >I'm creating a user/password table that will use either Mysql Passw

[PHP] crypt/Password

Hi there, I'm creating a user/password table that will use either Mysql Password or PHP Crypt function to encrypt the data. I know these functions are non reversible for good reason, but how do I deal with a situation where I want to email out a forgotton password? How can I get the passwrd

Re: [PHP] crypt and decrypt a string

http://www.paphe.com/php/tutorials/230101.php an encryption class = * Know more about me: http://www.geocities.com/mimodit * __ Do You Yahoo!? NEW from Yahoo! GeoCities - quick an

Re: [PHP] crypt and decrypt a string

ooops , sorry On Friday 05 October 2001 18:48, you wrote: > > On Friday 05 October 2001 18:10, you wrote: > > > Use crypt()/decrypt() couple. > > > > > > Andrey Hristov > > From the PHP doumentation on crypt: > > There is no decrypt function, since crypt() uses a one-way algorithm." so > that woul

Re: [PHP] crypt and decrypt a string

> On Friday 05 October 2001 18:10, you wrote: > > Use crypt()/decrypt() couple. > > > > Andrey Hristov >From the PHP doumentation on crypt: There is no decrypt function, since crypt() uses a one-way algorithm." so that wouldn't have worked. Joel -- PHP General Mailing List (http://www.

Re: [PHP] crypt and decrypt a string

From: "Nathan" <[EMAIL PROTECTED]> > Here are some simple xor encoding functions that I wrote. This will keep > the average joe from peaking at your data. Exactly what I was looking for. Thanks Joel -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED]

Re: [PHP] crypt and decrypt a string

turn $data; > > } > > > > -----Original Message- > > From: Joel Ricker [mailto:[EMAIL PROTECTED]] > > Sent: Friday, October 05, 2001 7:20 AM > > To: [EMAIL PROTECTED] > > Subject: [PHP] crypt and decrypt a string > > > > > > Does an

RE: [PHP] crypt and decrypt a string

[EMAIL PROTECTED]] Sent: Friday, October 05, 2001 7:20 AM To: [EMAIL PROTECTED] Subject: [PHP] crypt and decrypt a string Does anybody have an easy way to crypt and decrypt a string? I see the Mcrypt Encryption module but thats a little more gung-ho than I'm looking for. I'm not t

[PHP] crypt and decrypt a string

Does anybody have an easy way to crypt and decrypt a string? I see the Mcrypt Encryption module but thats a little more gung-ho than I'm looking for. I'm not trying to encrypt sensitive data rather I'm more trying obfuscate it a variable for a hidden tag. Thought I remember seeing something

[PHP] Crypt alternative for Win2k

Hello, I have been working in Linux for the last year on some scripts. Now I have to port them to Windows server. Does anyone know how to us crypt or an alternative for crypt? Thanks Brandon -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For addi

Re: [PHP] Crypt is not supported in this build??? 4.0.5

I guess you got the small package of PHP 4.0.5, you can go to www.php4win.de or www.php.net and download the php crypt extension and modifiy the php.ini to enabled it. -elias "Brandon Orther" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED

[PHP] Crypt is not supported in this build??? 4.0.5

Hello, I just installed 4.0.5 on IIS and it is telling me that crypt is not supported in this build. Does anyone know why? Thanks For Da Help Brandon -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

[PHP] Crypt in build 4.0.5

Hello, Does Crypt need to be setup in the ini or as an extension? When I installed 4.0.5 it doesn't seem to work? Thanks Brandon -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list

[PHP] PHP crypt() function stalls page on Raq2 with PHP4.03pl1

Hi yall, Before php4.03pl01 , PHP 3.07 (from the available rpm's at cobalt's ftp site) was installed on our cobalt raq2. Scripts that were using the crypt() function never gave me any problems until I had php4.03pl01 installed by a cobalt distributor. When I run this simple code : ## Code Enc

Re: [PHP] crypt() and md5

Hello again, [...] > A bit mistakable I think. > I'll give the translator a wink. ... if i can find a way to contact him. Anybody knows how to get a contact for the german translation of the PHP documentation? Their names are listed on the front page of the manual but no email addresses. N

Re: [PHP] crypt() and md5

Hello, > If your system's crypt() function supports standard DES crypt, then that > will be the default if you do not supply a salt. PHP will generate a > random DES salt for you. If you supply your own random MD5 salt and your > system's crypt() function supports MD5, then it will generate an

Re: [PHP] crypt() and md5

If your system's crypt() function supports standard DES crypt, then that will be the default if you do not supply a salt. PHP will generate a random DES salt for you. If you supply your own random MD5 salt and your system's crypt() function supports MD5, then it will generate an md5-encrypted st

Re: [PHP] crypt() and md5

Hy, > That means that you do have MD5 crypt() support. If you simply provide a > salt that starts with $1$ you should get an md5-encrypted password. I know how to do it manually. But isn't crypt supposed to choose MD5-hashing if it is available on the system php is running on? I use PHP 4.0.4p

Re: [PHP] crypt() and md5

That means that you do have MD5 crypt() support. If you simply provide a salt that starts with $1$ you should get an md5-encrypted password. If you look in a passwd or shadow file that contains md5'ed passwords you will see something like this: $1$rZelmysN$Gj0rbqD76STIotGExxpna1

[PHP] crypt() and md5

Hello all, i would like to crypt a password as secure as possible. The documentation says crypt() will use DES unless MD5 is available. But in my case this doesn't seem to work. 'echo CRYPT_STD_DES ;' returns 1 'echo CRYPT_EXT_DES;' returns 0 'echo CRYPT_MD5;' returns 1 'e

Re: [PHP] Crypt problem

On Friday 23 March 2001 00:04, you wrote: > you dont... as far as i know, > crypt only works on <= 8 chars > it will truncate anything over 8. That's "traditional" Unix crypt. PHP's crypt() may also understand other crypt algorithms that can handle longer passwords. Check the manual. > > the pr

RE: [PHP] Crypt problem

you dont... as far as i know, crypt only works on <= 8 chars it will truncate anything over 8. perhaps try using md5 or mcrypt... > -Original Message- > From: Randy Johnson [mailto:[EMAIL PROTECTED]] > Sent: Thursday, March 22, 2001 4:33 PM > To: [EMAIL PROTECTED]

[PHP] Crypt problem

hello I use crypt to crypt member's passwords and use the following verify "$stored_password" is the encrypted, stored password. "$password" is the plain text password you just got from the form. ## Check the passwords $encrypted_password = crypt($password,$stored_password); if ($encrypted_p