We build. You grow.

Get best community software here

Start a social network, a fan-site, an education project with oxwall - free opensource community software

Get started
Google+

password fields are encrypted | Forum

Topic location: Forum home » Support » General Questions
I dont know
I dont know Oct 3 '13
Hello every body when I am accessing ow_base_user  the password stored over there are completely encrypted it was not a MD5 summ also help me to decrypt these passwords so that I can use my algorithm to encrypt it.


Please help me to get out of it.
#1
Alia Team
Alia Oct 3 '13
We add salt to user's password. After that script encrypts the result with sha256 encryption.

 Checkuser_service.php to find out how this works.

SHA1, is a one-way hashing algorithm. That means that there is no way to decrypt something that has been encrypted with it. SHA256 and SHA512 are similar algorithms but with longer keys.
#2
Alia Team
Alia Oct 3 '13
Topic was moved from Bug reports and troubleshooting.
#3
Alia Team
Alia Oct 3 '13
Why would you like to change current encryption process?
#4
I dont know
I dont know Oct 5 '13
Show please tell me detailed procedure to decode the password so that after full decryption I can use my own algorithm.
#5
ross Team
ross Oct 7 '13
SHA1, is a one-way hashing algorithm. That means that there is no way to decrypt something that has been encrypted with it. SHA256 and SHA512 are similar algorithms but with longer keys. 
#6
Kяuncн Leader
Kяuncн Oct 16 '13

Quote from ross decrypt something that has been encrypted with it. SHA256

Wrong: Algorithm methods
#7
Oxwall Software
Oxwall Software Oct 17 '13
Leon K, on a second thought, I think you are right. I have edited my reply =)

Krunch, link you provided hashes passwords but not the other way around.
You can't decrypt something hashed by sha256.
#8
Kяuncн Leader
Kяuncн Oct 17 '13
One thing you can do is a brute-force strategy, where you guess what was hashed, then hash it with the same function and see if it matches. Unless the hashed data is very easy to guess, it could take a long time though.
#9
Stephna
Stephna Aug 10 '15

@Oxwall Software


I have tried it but doesnt reflect properly.  Someone please help me...


This is my salt value from config.php define('OW_PASSWORD_SALT', 'xEHNxiEXdz7GK');


When i enter the password as 31121993Aa from signing up it generates 82416b9973e6fc2279f8e2c54eae6c0d555eae5ad1760985ce1a65b1139c0320 


But when I create a custom sign up page which inserts data into this table and I use the same password i.e 31121993Aa and I get db57e80826fd86d6b00aebf21b34d1c382e123d17a02a1d008ced708af81441e when i use this code in my php


$username=$_POST['username'];$password=$_POST['password'];$salt = 'xEHNxiEXdz7GK';$pass = "password";$hashit = hash('sha256',$salt.$pass);$password1=$_POST['password1'];mysql_query("INSERT INTO oxwa_base_user(username,password,password1,email)VALUES('$username','$hashit','$password1','$mail')");




Please help me....

#10
Taissa Team
Taissa Aug 11 '15
Stephna, I am sorry but I didn't get the idea of your request.
What I can see that you use the $password=$_POST['password']; value just one time. You didn't use it in mySql query. Why do you need this value ? 
#11
kalvindarwan
kalvindarwan Dec 22 '23
We still tow rear-wheel drive vehicles all the time, so it’s no sweat off our backs. Washington DC Hood Cleaning Company
#12
James Walter
James Walter Jan 2
We understand that time is of the essence when it comes to getting your industrial vehicle back on the road, which is why we offer on-site repair services to minimize downtime. Napa On-Site Truck Repair
#13
Start | Demo | About | Policies & Licenses | Blog | Contact Us | Oxwall Foundation | Roadmap | Developer Central | Oxwall hosting | Contribute | Partners | Donation | Community software | Dating software
© Copyright Oxwall Software
Oxwall Community Software