We build. You grow.

Get best community software here

Start a social network, a fan-site, an education project with oxwall - free opensource community software

DATABASE | Forum

Topic location: Forum home » Support » General Questions
Ronnel DC
Ronnel DC Dec 29 '12
Hello Again Oxwall :)

I'm a website administrator im just going to ask, if there's anyway i can view the passwords of the users ?
Because if i view the passwords in PhpMyadmin it's encrypted..

Help anyone? Thanks! :)
Purusothaman Ramanujam
No. It's never going to be possible. They are md5 hashed and stored in database.
Ronnel DC
Ronnel DC Dec 29 '12
Are you Sure its MD5? i Can't even decrypt it with my md5 rainbow tables. even though i create an account with a password of "1234" Still can't decrypt it.



I Need it Badly for my College Thesis :(
Alia Team
Alia Jan 2 '13
Ronnel, it is not MD5.  Oxwall uses " sha256" function to hash passwords ( user_service.php, lines 808-810):

    public function hashPassword( $password )
    {
        return hash('sha256', OW_PASSWORD_SALT . $password);
    }
Ronnel DC
Ronnel DC Jan 2 '13
Oh Okay Aliaa! :D
Thanks :)
Purusothaman Ramanujam

Quote from Aliia it is not MD5. Oxwall uses " sha256" function

Sorry for the wrong information. Got confused with another open source script. :(
Purusothaman Ramanujam

Quote from Ronnel Dela Cruz One More Question, Can i delete or modify the user_services.php so i can view plain text password on PHPmyAdmin.

You can do it. If you are yet to lauch your site, you can go ahead. If your site is alrady up and running, existing users can not login. In those case, you need to have their values in database changed.
Alia Team
Alia Jan 4 '13
+1 Purusothaman. Thank you for answering.