ansaurus

Question

Answer 1

+1 A:

Maybe a dumb question, why not try UN-encrypting using Coldfusion 6? Insert that into the record as plain text (while in DEV).

Then encrypt with any format you want using PHP. That way you are 100% sure it will be decrypted/understood from Coldfusion to PHP.

As reference here is the CF 6 encrypt() fn: http://livedocs.adobe.com/coldfusion/6/CFML_Reference/functions-pt175.htm

and here is decrypt() fn: http://livedocs.adobe.com/coldfusion/6/CFML_Reference/functions-pt170.htm#1103962

Jakub 2009-11-16 15:12:06

Smart answer....what i was thinking too lol

crosenblum 2009-12-22 02:07:00

Answer 2

A:

So you have the encrypted passwords and want to retrieve them in plain text? If that's the case, I don't think it's viable. In fact passwords are encrypted to prevent people from doing exactly that.

Mij 2009-11-16 15:16:17

Look at his example, `toBase64(encrypt(text,key));` ... that is not a one way hash.

Tim Post 2009-11-16 15:19:23

Answer 3

+4 A:

If I'm not mistaken, the default CFMX_COMPAT function is simply a XOR.

So in PHP this would be as simple as:

$password_encrypted = base64_encode($text ^ $key);

Hope this helps.

Edit:

I was curious so I wrote a little script to test, and this might be reversed, here is the encrypt/decrypt.

<?php

$text = 'test';
$key = 'asdf';

$password_encrypted = base64_encode($key ^ $text);

echo $password_encrypted . "<br>\n";

$password_decrypted = base64_decode($password_encrypted) ^ $key;

echo $password_decrypted;

?>

evolve 2009-11-16 15:18:43

As you can see, bitwise operators are not my strong point.

evolve 2009-11-16 15:36:27

Thanks Evolve. Your answer is probably correct, but it not works in my problem. I can't do it, but thank you very much. I will try decrypt all the passwords with ColdFusion and store them in my DB.

Carlos 2009-11-17 11:07:28

ansaurus

tags:

views:

answers:

coldfusion decrypt in php

related questions