Re: [PHP] MD5 Passwords (How it works?)

Leif K-Brooks Mon, 17 Feb 2003 09:08:27 -0800

No, it's not reversable. When a user loses their password, you must generate a new one. To stop malicious users from requesting a new password for a user they dislike with a program (and stopping the user from logging in, since their password keeps changing), a link with a random code is sent to their email. The password is only changed when they visit the link, with the random code being correct.

Vernon wrote:

I'm thinking that the MD5 function more than likely encrypts a password to
store into a database, and when you log in using the MD5 function it will
simply encrypt the value being passed along again the same way. Now I'm
wondering what happens when I user has lost there password and needs to
retrieve it, there is no way to reverse the process is there?

Thanks

--
The above message is encrypted with double rot13 encoding.  Any unauthorized attempt to decrypt it will be prosecuted to the full extent of the law.





--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] MD5 Passwords (How it works?)

Reply via email to