Hi,

Does anyone know how to disable password encryption (hash)in VBulletin Version 2? I have a problem interfacing with Apache -- the double encryption is stuffing up my application. :disappointed:

AG

I'd not disable this - storing plaintext passwords is a no-no.

What exactly is your problem with Apache?I am sure it can be solved otherweise :)

I have people registered on my Bulletin Board for an online course. Depending on their progress, I wish to allow access to directories on my server. That is, when they finish Workbook 2, I allow them access to Workbook3. Access rights are given automatically and access is achieved is via their VBulletin password using an access.users file under Apache. The members do not have accounts on my server.

It used to work until the new version of VBulletin started to encrypt passwords (MB5+salt+Mb5). I was hoping to disable this feature.

This is a major problem for me, as the course starts this week, and I only discovered the problem.

So

1. Members register password
2. VBulletin hashes it
3. My php script extracts the password and makes an access.users file
4. Apache encrypts the passwords
5. Member goes to access the restricted directory, and is requested to type in their password.
6. Apache encrypts their response and compares it with the access.users file -- Mismatch!!!
7. My neat little system falls over.

Can you help?

AG :nervous:

I C.

Maybe this does help you out: https://vborg.vbsupport.ru/showthread.php?t=61507

Another way (although I would not recommend that) would be to disable the client javascript that sends hashed passwords when registering. This way you will have a plaintext password at registration time (although it will not make it into the database). Catch it at this point to create your users file.