Forget that last post - sorry!!!

Instead of using password('$password') in the query string, I would insert a
line before connecting to the DB:

$newpass = password($password)    <-- dont need quotes round here


$query = "SELECT username,password FROM users WHERE username=$username AND

As $username and $newpass are already inside double quotes you dont need to
put them in again!!


"Hawk" <[EMAIL PROTECTED]> wrote in message
> I've been trying to get this to work for a while, and everyone says that I
> should use the same thing, but it doesn't work, can anyone tell me what
> doing wrong?
> from the form on the previous page I have the $username and $password vars
> mysql_connect($host, $user, $pswd);
> mysql_select_db($db);
> $query = "SELECT username,password FROM users WHERE username='$username'
> password=password('$password')";
> $result = mysql_query($query);
> $num = mysql_num_rows($result);
> the $query line is made up from what everyone has told me to write..
> I tried to add a list($usarname, $pessword) = mysql_fetch_row($result);
> and it returned "" .. but when I removed the "AND
> password=password('$password')" part the list showed the username and the
> password in encrypted form
> I don't know how this could help me in any way, but atleast it shows I
> an encrypted password, but the problem is that the line everyone uses
> doesn't work.. maybe I need to change some setting in mysql och php.ini or
> something? anyone have any idea?
> I know I've asked this several times but it doesn't seem like I'm
> with my problem. Hope I will be now.
> Hawk

PHP General Mailing List (
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to