Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Echoing a password from mysql to webpage.

Status
Not open for further replies.
vincelewin

vincelewin

IS-IT--Management
May 16, 2002
83
GB
Hi all,

I am relatively new to this so please excuse my ignorance.

I am building an application available to registered users. Any one can register and provide a username and password. At the end of the registration I am echoing back to them the information they have added and also emailing it to them.

My problem is this, in mysql I have a table that holds the user information inc. passwords. I want to echo back the password but it just comes through encrypted and appears as alphnumberic characters.

This is the query I am running to insert the info

$sql = "INSERT INTO member (loginname,password,dateacccreated) VALUES('$_SESSION[username]',password('$userpass'),'$today')";
mysql_query($sql) or die(mysql_error());

How do I convert the data in member.password back to plain text so I can echo it out to a webpage/email?
 
Sort by date Sort by votes
Sorry I am trying to echo it with the line below.

<?php echo"<td class='mainaccbody'><font class='mainaccbody'>Pass:<strong>&nbsp{$acconerow['password']}</strong></font>";?>

This just give me back a long string of characters but this does not read as the passwrod entered.

Thanks

Vince
 
Upvote 0 Downvote
You are using the mysql function password, this function makes a hash and is therefor not reversible.A very save way of storing passwords.

When you want users to recover lost passwords, offer them a way to generate a new one instead, using there e-mailaddress. Or don't put the password hashed in mysql, but encrypt it using PHP.

mcvdmvs
&quot;It never hurts to help&quot; -- Eek the Cat
 
Upvote 0 Downvote
Thanks.

Ill take ur advice and provide an alternate method of password reset.
 
Upvote 0 Downvote
A very save way of storing passwords.
Click to expand...
I recall reading that it is contra-indicated to use mysql password as a way of encrypting content. sorry that i can't provide a link to the source (it was in the php manual tho)

the received wisdom is to use one way algorithms in php such as crypt and store the resultant hash in mysql as plain text. in the past i have used md5 hashes but i am moving away from these as encryption routines due to the websites on the net that are compiling lists of md5 hashes and their clear text equivalents.

i would recommend not using reversible encryption but going down the password reset route as suggested above
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

R
  • Locked
  • Question
How Can I Use MySQL To Send Data To An Email
Replies
1
Views
294
Chris Miller
Chris Miller
P
  • Locked
  • Question
JPgraph - How to stop a line graph from dropping to zero?
Replies
2
Views
412
Chris Miller
Chris Miller
SashaBuilder3
  • Locked
  • Question
import CSV file into MySql table in PhpMyAdmin
Replies
0
Views
414
SashaBuilder3
SashaBuilder3
lexer
  • Locked
  • Question
Join two mysql tables for populate datatable
Replies
3
Views
280
spamjim
spamjim
ersatz
  • Locked
  • Question
How to send 2 select from mysql database in email like tables
Replies
5
Views
526
ersatz
ersatz

Part and Inventory Search

Sponsor

Back
Top