passwords

Better way save password in mysql which can be decrypted also using php

Hi, I am currently using md5 function to encrypt my password and save to mysql db which can not be decrypted. Now my user want that when they forgot password, they should get same (old) password instead of new password. So my question is that what should i use to encrypt my password and store in mysql Database. And i can decrypt that...

Using hashing to safely store user passwords

Please try to search StackOverflow before asking a question. Many questions are already answered. For example: PHP & MySQL compare password how do I create a mySQL user with hash(‘sha256’, $salt . $password)? Secure hash and salt for PHP passwords User Login with a single query and per-user password salt Non-random...

getpasswd functionality in Go?

Would like to be able to take password entry from the stdin console, but, of course, without echoing what the user types. Is there something comparable to getpasswd functionality in Go? (Google's Go language) I tried using syscall.Read, but it echoes what is typed. ...

Hash and salt passwords in C#

I was just going through one of DavidHayden's articles on Hashing User Passwords. Really I can't get what he is trying to achieve. Here is his code: private static string CreateSalt(int size) { //Generate a cryptographic random number. RNGCryptoServiceProvider rng = new RNGCryptoServiceProvider(); byte[] buff = new byte[si...

Retrieving text from password field [python][pyqt4]

def welcomeStage (self): self.test = QtGui.QLineEdit (self) self.test.move (50, 150) QtCore.QObject.connect (self.test, QtCore.SIGNAL ('returnPressed()'), self.passwordStage) def passwordStage (self): self.email = self.test.text() self.test.clear() self.test.setEchoMode (QtGui.QLineEdit.Password) QtC...

Codeigniter return password in profile?

(This is for a codeigniter project) I'm developing a user-profile page, that lists the user's profile very similarly to Stackoverflow's profile page. I have a simple echo command in the view file: <? echo $members->row()->password?> This displays the md5 string. (I'm not too familiar with terms--I'm a beginner). How can I display th...

Connection string security in .net desktop application

Hi, i'm developing a .net winforms desktop application intended to be run at several bank's branches as a backup application whenever the main one (a web application) is unavailable due to connection issues with the bank's central node. The branchs themselves don't count with any enterprise services besides a SQL-Server database. For tha...

Secure Token Process

Im currently in the mist of developing a website using PHP and MYSQL. Its a private website therefore registrations must allowed using emails. In simple tearms if a new user has to be registered. The administrator has to go into the system and add an email address to be registered. What i want to create is a token or a pass value when t...

How to retrieve saved passwords of internet explorer 6 and later version?

I'm planing on a program to manage saved passwords of internet explorer. I saw many tools which displays the saved passwords, but I didn't find the source code. Thanks! ...

How to let Mac and Windows users change their AD password?

I need to look for an example of a web application, preferably ASP.NET but any otherweb language will do, that lets Mac and Windows users change their AD password. Any technique, application, or source code will be great. P.S: our Macs are not connected to AD and we also have Windows users. Thanks! ...

firefox fills in the password into the username field

This is weird: if i login to my application, ask firefox to save the username/password. Then log out and go back to the login screen, firefox fills in the password inside the username input field, thus rendering it visible! Any idea what could cause the problem? Here is the html of my form, although i've checked it 10 zillion times. <f...

creating password field in oracle

What is the use of "The Secure External Password Store"? And can I create password field in my Oracle table using "The Secure External Password Store"? Or how can I create password field in my Oracle table without using "The Secure External Password Store"? ...

unable to remove password from Microsoft Access 2007 (accdb)

I have a Microsoft Access 2007 (accdb) file. I set a password on it. When I open it up now, I am prompted for a password. I enter the correct password and I can gain access to it. However, I want to remove the password. I click "Database tools", but in the database tools, I only see "Encrypt with password", contrary to the help file...

How can I create a login partial view in MVC?

How can I create a login partial view in MVC 2.0? I want to include this in several masterpages in my site since I can't use the login control in MVC. What code do I put in the controller which will accept the username and password? ...

ASP:TextBox Value disappears in postback only when password

I have an asp.net textbox like this: <asp:TextBox ID="PINPad" runat="server" Columns="6" MaxLength="4" CssClass="PINTextClass"></asp:TextBox> It is, as you might have guessed, the text box from an on screen PIN pad. Javascript fills in the values. The page is posted back every five seconds (using an update panel if that matter...

Should http be used for https login subsequent pages?

I've seen many threads on SO and they suggest that password can't be securely transferred without SSL. So suppose I've https login page but Should I switch back to http after user has been authenticated over https (assuming no sensitive information is sent over after login)? Because it might load page a bit faster? Would it create ext...

Are passwords on modern Unix/Linux systems still limited to 8 characters?

Years ago it used to be the case that Unix passwords were limited to 8 characters, or that if you made the password longer than 8 characters the extra wouldn't make any difference. Is that still the case on most modern Unix/Linux systems? If so, around when did longer passwords become possible on most systems? Is there an easy way to ...

Firefox: What's the basis for remembering login information?

Updated with clarifications Hello, When our users go to http://mysubdomain.server.com/login they get redirected to https://secure.server.com/login?subdomain=mysubdomain. So the actual login page is located on the secure.server.com subdomain. The problem is that if the user logs in with the credentials meant for subdomainA and tells Fi...

validating password format in Authlogic

Is there a way to get Authlogic to validate the format of a password, for instance must contain at least one letter and at least one number? The omission of a validates_format_of_password_options method to be used in the acts_as_authentic config block seems to indicate that Authlogic has the opinion that one should not be imposing such ...

How to run automated rsync using ssh2

Hi all, i am trying to setup rsync between two machines over ssh2 protocol. Earlier we used ssh1 for automated rsync without any passphrase, but recently we migrated to ssh2 and running rsync with ssh2 prompts for passphrase. I generated a new SSH2-RSA key and that too without passphrase, but it still asks me for the passphrase.Here is...