RE: [PHP] crypt salt question

@lists.php.net Subject: Re: [PHP] crypt salt question No chance. Unless you have the salt stored along each password, your passwords are as good as random texts Satyam - Original Message - From: "Andras Kende" <[EMAIL PROTECTED]> To: Sent: Thursday, August 30, 2007

RE: [PHP] crypt salt question

mysql ... Greets, Jan -Original Message- From: Jan Reiter [mailto:[EMAIL PROTECTED] Sent: Friday, August 31, 2007 12:07 AM To: 'Andras Kende'; PHP Mailing List Subject: RE: [PHP] crypt salt question Hi! How did you do the comparison with the PG_SQL database?? I believe

RE: [PHP] crypt salt question

Hi! How did you do the comparison with the PG_SQL database?? I believe there is a UNIX function, able to retrieve the salt from a crypt string, or one that can do the comparison, without a slat given. But I'm not quite sure. I'm gonna investigate that. But how did you compare passwords before, whe

Re: [PHP] crypt salt question

No chance. Unless you have the salt stored along each password, your passwords are as good as random texts Satyam - Original Message - From: "Andras Kende" <[EMAIL PROTECTED]> To: Sent: Thursday, August 30, 2007 11:42 PM Subject: [PHP] crypt salt question Hello, I'm trying t

Re: [PHP] Crypt Function-- Encryption and Decryption

, 2004 8:52 PM *To:* [EMAIL PROTECTED] *Cc:* Mulley, Nikhil; [EMAIL PROTECTED] *Subject:* Re: [PHP] Crypt Function-- Encryption and Decryption What would be the use of a hash if it was easy to recover ? You can use it by storing the hash of a password, en when the user

Re: [PHP] Crypt Function-- Encryption and Decryption

What would be the use of a hash if it was easy to recover ? You can use it by storing the hash of a password, en when the user supplies you his password in a script, you hash it again... and compare those two hashes... Trying to recover the value from which the hash is the result is called crack

Re: [PHP] Crypt Function-- Encryption and Decryption

Mulley, Nikhil wrote: Hi All, I have a password file , which has all the passwords words encrypted with the Crypt Function I know that Crypt uses one-way algorithm to generate the encryptions and PHP has no Decrypt function , ( but can it be developed to have one ?) But I am eager to know whethe

Re: [PHP] Re: PHP Crypt on MacOSX

Galen P.Zink wrote: Kris, I doubt there's "no way" to do this under OS X. Maybe by default, you have a curve ball to deal with. But considering the kernel is open source, you could make this OS do anything... literally :) That is how I feel as well. Being a long-time *nix/BSD user.. I have hear

Re: [PHP] Re: PHP Crypt on MacOSX

Galen, Thank you for the response. I understand where you are coming from; your use of MD5 hash. In short, my goal is to recreate crypt()'s method of creating "unix style" passwords without using PHP's built-in crypt() function... (as seen in /etc/shadow on a *nix server, ie. $1$sed$blaaa

Re: [PHP] Re: PHP Crypt on MacOSX

I use md5 all the time and OS X is my web development staging environment! I write and test all my scripts on OS X and then send off to the server. I don't use crypt, but I have never seen any problems going between the two. apache, php, mysql, rsync, ssh, scp, everything *nixy plus a nice inte

[PHP] Re: PHP Crypt on MacOSX

Kris wrote: I recently moved a site to a MacOSX based Apache/PHP server. Apparently crypt only uses DES. I read somewhere that "there is no way to get it use use MD5", which sounds hard to beleive considering the OS is BSD based. So.. here is my dilema.. My db contains usernames and passwords.

Re: [PHP] crypt() source

heh.. I thought java had *everything*... * Thus wrote Brent Clements: > This question was completely off-topic, but here is a site that has code for > java that may help you > > http://locutus.kingwoodcable.com/jfd/crypt.html > > Also, repeat after me...GOOGLE is your FRIEND! > > -Brent > > --

Re: [PHP] crypt() source

--- Matt <[EMAIL PROTECTED]> wrote: > Hi i am new to php, and i am writing a small user > authentication script. In > the manual i read about using the crypt() function > to generate a hash, and > how you can validate the password using a salt. eg > if (crypt($userinput, $hash) == $hash) > > T

Re: [PHP] crypt() source

This question was completely off-topic, but here is a site that has code for java that may help you http://locutus.kingwoodcable.com/jfd/crypt.html Also, repeat after me...GOOGLE is your FRIEND! -Brent - Original Message - From: "Matt" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent:

Re: [PHP] crypt()

"Afan Pasalic" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > Hi everyone! > > My hosting company has global turned on. But I want to code using more safe > global off. My question though is how I can do it "locally", in my script? > I tried to use > ini_set("register_globals", FALSE

RE: [PHP] crypt()

Thanks Greg. -Original Message- From: Greg Donald [mailto:[EMAIL PROTECTED] Sent: Wednesday, August 25, 2004 4:38 PM To: Afan Pasalic Cc: [EMAIL PROTECTED] Subject: RE: [PHP] crypt() On Wed, 2004-08-25 at 16:18, Afan Pasalic wrote: > Hi everyone! > > My hosting company h

RE: [PHP] crypt()

On Wed, 2004-08-25 at 16:18, Afan Pasalic wrote: > Hi everyone! > > My hosting company has global turned on. But I want to code using more safe > global off. My question though is how I can do it "locally", in my script? > I tried to use > ini_set("register_globals", FALSE); > but it still doesn'

RE: [PHP] crypt()

Hi everyone! My hosting company has global turned on. But I want to code using more safe global off. My question though is how I can do it "locally", in my script? I tried to use ini_set("register_globals", FALSE); but it still doesn't work. On php.net manual I can find WHAT I have to do and reas

Re: [PHP] crypt() sources c# port

and protected by copyright :-) Martin Luethi wrote: download the source code: http://www.php.net/downloads.php or browse online: http://cvs.php.net the crypt() source is under php-src/ext/standard/ g. tinu Thu, 29 Jan 2004 09:54:39 +0100 gerold kathan <[EMAIL PROTECTED]>: hi there - i have use

Re: [PHP] crypt() sources c# port

download the source code: http://www.php.net/downloads.php or browse online: http://cvs.php.net the crypt() source is under php-src/ext/standard/ g. tinu Thu, 29 Jan 2004 09:54:39 +0100 gerold kathan <[EMAIL PROTECTED]>: hi there - i have user credentials in my DB encrypted with PHPs crypt() func

Re: [PHP] crypt()

On Friday 14 February 2003 03:20, Edward Peloke wrote: > Is there anyway to make crypt() behave like md5() and give the same results > for the same string? All of the passwords for the db I am using had > crpyt() applied to them before they were entered in the db. How do I then > verify that pass

Re: [PHP] crypt() function

Have you considered using md5() instead? On Mon, 2002-10-14 at 16:27, Adam Plocher wrote: > Hello, I am trying to authenticate a password using the crypt() > function. Here's what I got: > > if (crypt($_SERVER['PHP_AUTH_PW'],$data[1]) == $data[1]) > { > ... > } > > $data[1] being the s

RE: [PHP] Crypt() =or= md5()

Anthony Ritter scribbled; > > I get the following line when trying to use the crypt() function in > php .. > > Fatal error: Call to undefined function: crypt() in c:\program > files\apache group\apache\htdocs\handleform1.php on line

RE: [PHP] Crypt() =or= md5()

I couldn't find anything in the manual, but I don't think crypt() works in windows...or at least 95/98. Or the function may be denied in your PHP.ini for some reason. ---John Holmes... > -Original Message- > From: Anthony Ritter [mailto:[EMAIL PROTECTED]] > Sent: Monday, September 23, 20

Re: [PHP] crypt(): How to make it use blowfish?

Dan Hardiker wrote: > > Use mcrypt. See the manual. I don't want to use mcrypt :) It requires me install a separate library. Or do you mean that the only to get crypt() to use Blowfish is to install mcrypt? What does crypt() require, on a RH7.2 Linux machine, in order to use Blowfish? Jc

Re: [PHP] crypt(): How to make it use blowfish?

> My system is a linux RH7.2 box. How can I make blowfish encryption > available to PHP's crypt? Use mcrypt. See the manual. -- Dan Hardiker [[EMAIL PROTECTED]] ADAM Software & Systems Engineer First Creative Ltd -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: htt

[PHP] Re: PHP crypt() now adding $1$ to password

>getting added to the database (mysql) have a $1$ in front of them. These I'm pretty sure that's the way the other encryption scheme works. You've convinced your computer to switch to YYY instead of XXX for encryption routines... So now you are using the one with the 18-character salt, instea

Re: [PHP] Crypt Limitation?

Depends on the OS. I suggest using md() instead. On Sat, 23 Mar 2002, Steven Walker wrote: > Is there a string length limitation to crypt()? It generates the same > result for different input strings. I'm using crypt to store access > codes that are generated using uniqid. For example, if I do

Re: [PHP] crypt/Password

Hi, I just thought i would point out that the entire point of crypt, md5, or MySQL password() function is to create a hash out of the original string. However, they are designed so it is computationally infeasible to take a hash and find out the original string was. Actually, it is impossib

Re: [PHP] crypt/Password

Phil <[EMAIL PROTECTED]> wrote: > Thanx, sounds like the way to go. > Still curious though whether there is anyway at all to get the original > password back to the user? not without storing it unencrypted or cracking the password with a dictionary attack. as you said, the php crypt() function an

Re: [PHP] crypt/Password

Thanx, sounds like the way to go. Still curious though whether there is anyway at all to get the original password back to the user? Jeff Sheltren <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What you could do is send a newly generated password to them, and

Re: [PHP] crypt/Password

What you could do is send a newly generated password to them, and then allow them to change the password on your site to something easier to remember... Jeff At 11:56 PM 2/3/2002 +0800, Phil wrote: >Hi there, >I'm creating a user/password table that will use either Mysql Password or >PHP Crypt

Re: [PHP] crypt and decrypt a string

http://www.paphe.com/php/tutorials/230101.php an encryption class = * Know more about me: http://www.geocities.com/mimodit * __ Do You Yahoo!? NEW from Yahoo! GeoCities - quick an

Re: [PHP] crypt and decrypt a string

ooops , sorry On Friday 05 October 2001 18:48, you wrote: > > On Friday 05 October 2001 18:10, you wrote: > > > Use crypt()/decrypt() couple. > > > > > > Andrey Hristov > > From the PHP doumentation on crypt: > > There is no decrypt function, since crypt() uses a one-way algorithm." so > that woul

Re: [PHP] crypt and decrypt a string

> On Friday 05 October 2001 18:10, you wrote: > > Use crypt()/decrypt() couple. > > > > Andrey Hristov >From the PHP doumentation on crypt: There is no decrypt function, since crypt() uses a one-way algorithm." so that wouldn't have worked. Joel -- PHP General Mailing List (http://www.

Re: [PHP] crypt and decrypt a string

From: "Nathan" <[EMAIL PROTECTED]> > Here are some simple xor encoding functions that I wrote. This will keep > the average joe from peaking at your data. Exactly what I was looking for. Thanks Joel -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED]

Re: [PHP] crypt and decrypt a string

On Friday 05 October 2001 18:10, you wrote: > Use crypt()/decrypt() couple. > > Andrey Hristov > IcyGEN Corporation > BUILDING SOLUTIONS > http://www.icygen.com > > On Friday 05 October 2001 17:53, you wrote: > > Here are some simple xor encoding functions that I wrote. This will keep > > the aver

RE: [PHP] crypt and decrypt a string

Here are some simple xor encoding functions that I wrote. This will keep the average joe from peaking at your data. function decode($data){ $data = base64_decode($data); /* XOR data */ for($i = 0; $i < strlen($data); $i++){ $data[$i] = ~ $data[$i];

Re: [PHP] Crypt is not supported in this build??? 4.0.5

I guess you got the small package of PHP 4.0.5, you can go to www.php4win.de or www.php.net and download the php crypt extension and modifiy the php.ini to enabled it. -elias "Brandon Orther" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello, > > I just in

Re: [PHP] crypt() and md5

Hello again, [...] > A bit mistakable I think. > I'll give the translator a wink. ... if i can find a way to contact him. Anybody knows how to get a contact for the german translation of the PHP documentation? Their names are listed on the front page of the manual but no email addresses. N

Re: [PHP] crypt() and md5

Hello, > If your system's crypt() function supports standard DES crypt, then that > will be the default if you do not supply a salt. PHP will generate a > random DES salt for you. If you supply your own random MD5 salt and your > system's crypt() function supports MD5, then it will generate an

Re: [PHP] crypt() and md5

If your system's crypt() function supports standard DES crypt, then that will be the default if you do not supply a salt. PHP will generate a random DES salt for you. If you supply your own random MD5 salt and your system's crypt() function supports MD5, then it will generate an md5-encrypted st

Re: [PHP] crypt() and md5

Hy, > That means that you do have MD5 crypt() support. If you simply provide a > salt that starts with $1$ you should get an md5-encrypted password. I know how to do it manually. But isn't crypt supposed to choose MD5-hashing if it is available on the system php is running on? I use PHP 4.0.4p

Re: [PHP] crypt() and md5

That means that you do have MD5 crypt() support. If you simply provide a salt that starts with $1$ you should get an md5-encrypted password. If you look in a passwd or shadow file that contains md5'ed passwords you will see something like this: $1$rZelmysN$Gj0rbqD76STIotGExxpna1

Re: [PHP] Crypt problem

On Friday 23 March 2001 00:04, you wrote: > you dont... as far as i know, > crypt only works on <= 8 chars > it will truncate anything over 8. That's "traditional" Unix crypt. PHP's crypt() may also understand other crypt algorithms that can handle longer passwords. Check the manual. > > the pr

RE: [PHP] Crypt problem

you dont... as far as i know, crypt only works on <= 8 chars it will truncate anything over 8. perhaps try using md5 or mcrypt... > -Original Message- > From: Randy Johnson [mailto:[EMAIL PROTECTED]] > Sent: Thursday, March 22, 2001 4:33 PM > To: [EMAIL PROTECTED] > Subject: [PHP] Cry