vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Modification Requests/Questions (Unpaid) (https://vborg.vbsupport.ru/forumdisplay.php?f=112)
-   -   Disable password encryption (https://vborg.vbsupport.ru/showthread.php?t=61993)

georges 02-28-2004 01:01 AM
Disable password encryption
 
Hi,

Does anyone know how to disable password encryption (hash)in VBulletin Version 2? I have a problem interfacing with Apache -- the double encryption is stuffing up my application. :disappointed:

AG

Andreas 02-28-2004 01:28 AM
I'd not disable this - storing plaintext passwords is a no-no.

What exactly is your problem with Apache?I am sure it can be solved otherweise :)

georges 02-28-2004 02:07 AM
I have people registered on my Bulletin Board for an online course. Depending on their progress, I wish to allow access to directories on my server. That is, when they finish Workbook 2, I allow them access to Workbook3. Access rights are given automatically and access is achieved is via their VBulletin password using an access.users file under Apache. The members do not have accounts on my server.

It used to work until the new version of VBulletin started to encrypt passwords (MB5+salt+Mb5). I was hoping to disable this feature.

This is a major problem for me, as the course starts this week, and I only discovered the problem.

So

1. Members register password
2. VBulletin hashes it
3. My php script extracts the password and makes an access.users file
4. Apache encrypts the passwords
5. Member goes to access the restricted directory, and is requested to type in their password.
6. Apache encrypts their response and compares it with the access.users file -- Mismatch!!!
7. My neat little system falls over.

Can you help?

AG :nervous:

Andreas 02-28-2004 08:30 AM
I C.

Maybe this does help you out: https://vborg.vbsupport.ru/showthread.php?t=61507

Another way (although I would not recommend that) would be to disable the client javascript that sends hashed passwords when registering. This way you will have a plaintext password at registration time (although it will not make it into the database). Catch it at this point to create your users file.


All times are GMT. The time now is 10:06 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01337 seconds
  • Memory Usage 1,713KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (4)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete