Re: [PHP] Passwords suddenly not working

2006-11-29 Thread Janet Valade
Dave M G wrote: PHP List, I have a few scripts that have been around for a while. In one, is a simple login function: $query = "SELECT * FROM forum_members WHERE memberName = '" . $username . "' AND passwd = MD5('" . $password . "')"; $result = mysql_query($query); This was working fine,

[PHP] Passwords suddenly not working

2006-11-29 Thread Dave M G
PHP List, I have a few scripts that have been around for a while. In one, is a simple login function: $query = "SELECT * FROM forum_members WHERE memberName = '" . $username . "' AND passwd = MD5('" . $password . "')"; $result = mysql_query($query); This was working fine, but recently I hav

Re: [PHP] Passwords?

2005-03-09 Thread Jochem Maas
Chris W. Parker wrote: Jochem Maas on Sunday, March 06, 2005 5:24 AM said: that said you still don't want this file or this string to get into the hands of evilhaxors - best to keep this file (one with the encrypted pwd in it) outside of the docroot. Why encode it a

RE: [PHP] Passwords?

2005-03-08 Thread Chris W. Parker
Jochem Maas on Sunday, March 06, 2005 5:24 AM said: > that said you still don't want this file or this string to get into > the hands of evilhaxors - best to keep this file (one with the > encrypted pwd in it) outside of the docroot. Why encode it at all then? If s

Re: [PHP] Passwords?

2005-03-06 Thread Jason Wong
On Sunday 06 March 2005 21:03, AdamT wrote: > If the password is stored in between the tags, then it > shouldn't get sent to the browser unless you specifically send it > there. For *any* php code it is best to use tags. These tags will work on *all* php enabled webservers. The short tags is

Re: [PHP] Passwords?

2005-03-06 Thread rory walsh
ry walsh [mailto:[EMAIL PROTECTED] Sent: Sunday, March 06, 2005 1:35 PM To: php-general@lists.php.net Subject: [PHP] Passwords? I want to create a simple as possible password script, how secure is it to have the password actually appear in the script? I only need one password so I thought that th

Re: [PHP] Passwords?

2005-03-06 Thread Jochem Maas
haxors - best to keep this file (one with the encrypted pwd in it) outside of the docroot. Now even if someone will see the php script he won't knew your password Hope I've helped yaron -Original Message- From: rory walsh [mailto:[EMAIL PROTECTED] Sent: Sunday, March 06, 2005

Re: [PHP] Passwords?

2005-03-06 Thread AdamT
On Sun, 06 Mar 2005 11:34:39 +, rory walsh <[EMAIL PROTECTED]> wrote: > I want to create a simple as possible password script, how secure is it > to have the password actually appear in the script? I only need one > password so I thought that this would be more straightforward than > having a f

RE: [PHP] Passwords?

2005-03-06 Thread YaronKh
ve helped yaron -Original Message- From: rory walsh [mailto:[EMAIL PROTECTED] Sent: Sunday, March 06, 2005 1:35 PM To: php-general@lists.php.net Subject: [PHP] Passwords? I want to create a simple as possible password script, how secure is it to have the password actually appear in the sc

[PHP] Passwords?

2005-03-06 Thread rory walsh
I want to create a simple as possible password script, how secure is it to have the password actually appear in the script? I only need one password so I thought that this would be more straightforward than having a file which contains the password. I am not using any database. Actually this le

RE: [PHP] Passwords and SSH port forwarding (was: Alternative to phpMyAdmin)

2001-07-13 Thread Matthew Loff
Excellent tip, Hank! I didn't know SSH tunneling was that easy, I haven't had the necessity to use SSH at all yet. -Original Message- From: Hank Marquardt [mailto:[EMAIL PROTECTED]] Sent: Friday, July 13, 2001 6:42 PM To: Egan Cc: [EMAIL PROTECTED] Subject: Re: [PHP] Pas

Re: [PHP] Passwords and SSH port forwarding (was: Alternative to phpMyAdmin)

2001-07-13 Thread Hank Marquardt
Works just fine ... as does postgres -- ssh -N -2 -f -C -c blowfish -L3306:yourdatabase.server.here:3306 [EMAIL PROTECTED] or the other usual tricks work too ... like going through a firewall (fyi ... clear text on the *other* side of the firewall): ssh -N -2 -f -C -c blowfish -L3306:db_behind

[PHP] Passwords and SSH port forwarding (was: Alternative to phpMyAdmin)

2001-07-13 Thread Egan
On Fri, 13 Jul 2001 12:28:37 -0400, "Matthew Loff" <[EMAIL PROTECTED]> wrote: >> Does mysql-front encrypt the password before it travels the net? >It does support the compressed client/server protocol, which would make >it harder to intercept-- but encryption is not an option yet on the >client.

RE: [PHP] Passwords?

2001-05-23 Thread Boget, Chris
> I have some field error checking going on ... and when a user > (say) doesn't fill in a field correctly, my error page comes up telling > them. They then must click on their browsers button > and make the changes. > Now -- I have a password field, and when they click back, > they are force

Re: [PHP] Passwords?

2001-05-22 Thread Andreas D. Landmark
At 22.05.2001 23:27, you wrote: >I have some field error checking going on ... and when a user (say) doesn't >fill in a field correctly, my error page comes up telling them. They then >must click on their browsers button and make the changes. > >Now -- I have a password field, and when they clic

RE: [PHP] Passwords?

2001-05-22 Thread Chadwick, Russell
[mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 22, 2001 3:28 PM To: [EMAIL PROTECTED] Subject: [PHP] Passwords? I have some field error checking going on ... and when a user (say) doesn't fill in a field correctly, my error page comes up telling them. They then must click on their bro

[PHP] Passwords?

2001-05-22 Thread Jason Caldwell
I have some field error checking going on ... and when a user (say) doesn't fill in a field correctly, my error page comes up telling them. They then must click on their browsers button and make the changes. Now -- I have a password field, and when they click back, they are forced to re-enter t