vb.org Archive
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   Is there a 'see members pw' hack available? (https://vborg.vbsupport.ru/showthread.php?t=42309)

DanIAm 08-15-2002 05:36 AM
Is there a 'see members pw' hack available?
 
If so can you point me in the right direction?

edit: Also, could someone not draw up a dummy request for the members name and password. I know nothing about hacking, but how hard would it be to create a section within VB in which upon the member clicking they would be prompted to enter their member name and pw for confirmation. This of course not being encrypted, and either logged or emailed to the admin.

tHE DSS 08-15-2002 06:03 AM
First, how come you want your members passwords?

Erwin 08-15-2002 07:15 AM
No, because members may use the same password for other forums or sites - it would be bad for an admin to abuse that.

Learner29 08-29-2002 06:10 PM
not necessarily.....

why do you assume it is necessarily for a negative reason.

if an admin wanna abuse his users, he could sell the email list he has to any porno site, or could do any other thing that might cross your mind.

I still would like to ask for this hack.

if an admin wanna abuse the user and see his or her password, he could always change the email address of that user in the control panel, to his own email, and send the password to the user.

it is that easy.

NTLDR 08-29-2002 07:41 PM
Quote:
Originally posted by Learner29
I still would like to ask for this hack.
How many times do you need to be told that this is IMPOSSIBLE?

N9ne 08-29-2002 07:43 PM
He can't change their email to his own email and get the password sent, as it resets the password when being sent.

Also, to answer the thread starters question: vBulletin uses a MD5 hash technology and it's next to impossible to decode it...

Logician 08-29-2002 07:49 PM
Quote:
Originally posted by Learner29
not necessarily.....
why do you assume it is necessarily for a negative reason.
Here is the deal: Tell me a good reason you need to know your users' board passwords, I'll tell you how to grab some of them..

N9ne 08-29-2002 07:51 PM
Here's some general advice: Use a different password at every forum you go to, because some people might want it for malicious uses and if ever a hack is released, or they get their hands on a MD5 decoder, you're screwed ;)

NTLDR 08-29-2002 07:57 PM
The only good use I think think for finding/knowing users passwords is for finding people who have registered dublicate times, in which case there is already a hack that does this, it will compare all the MD5 hashes for duplicate passwords. There is never any need to know what the users password is.

N9ne 08-29-2002 08:14 PM
However when people register multiple times, they still could be using a different password, which means there are no uses :p


All times are GMT. The time now is 12:17 PM.
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01409 seconds
  • Memory Usage 1,725KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete