The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
|||||||
|
#1
03-23-2007, 09:21 PM
|
|||
|
|||
Removing/Changing MD5 on Passwords
Here's my problem:
I have a a server that reads md5 and regular passwords. The problem I'm having is Vbulletin encrypts the passwords differently than the server and they don't sync up as the same hash. I need to either: 1. Remove the md5 encryption entirely or 2. change it to the same thing. I'm seeing removing it as an easier thing to do lol The md5 for the server works fine and dandy by just putting md5 infront of the password post on insertion. Vbulletin seems to go a little beyond just that lol. Either that or I have absolutely no idea what I'm talking about and it's something totally different ¬_¬ **Edit** Okay after reading some more I found that out that I need to remove the "salt" from the hash to keep it as the hash of just the password. Anyone know how to do that? I would really appreciate it ^_^ **Edit2** Okay read some more... I just need it to be just md5(password) lol no salts or double md5 I've found incomplete guides most of which don't even do half of what they say lol 
|
|
#2
03-24-2007, 08:14 AM
|
|||
|
|||
|
What are you trying to achieve? What got vBulletin password hashes and a server to do with eachother?
|
|
#3
03-27-2007, 05:07 AM
|
|||
|
|||
|
Heh sorry for the late reply, I figured no one would reply.
They will both be used by the same community? lol Rather than registering on the forums and server why not just put it all into the forums. I kinda gave up on trying since I really can't figure it out heh, I spent a few days tryin' to figure it out. So if anyone knows I'm still open for ideas I suppose.
|
|
#4
03-27-2007, 07:25 AM
|
|||
|
|||
|
If you don't expect an answer, why post the question?
 Also you still have not provided enough details on what you try to do to give you an answer.
|
|
#5
03-28-2007, 10:04 PM
|
|||
|
|||
|
Quote:
As for the details... I want to remove the salt and one of the md5 (the one after adding the salt). Just a simple md5() put on the password. Right now I'm trying to edit the server to addon the salt and then read it from there. I'll post/edit back if I figure it out lol
|
|
#6
03-29-2007, 06:53 AM
|
||||
|
||||
|
Don't change vBulletin's system, it would reduce security. Modify the existing addon to use 'md5(md5($password . $salt))'. $salt is the `salt` field in the user table.
|
|
#7
03-29-2007, 07:23 PM
|
|||
|
|||
|
Heh Dismounted... I wish the other thing was php but it's not lol. If the other one was php I would have done this a long time ago, in fact I would never have even asked lol
The server is coded in C++ and I have no idea how to mess with that lol. I'm trying right now though but I've yet to find the password comparison string in it. I've tried a bit but I get errors that I don't understand lol, 'void' illegal in all types? lol Basically all I need to do is find that part of the code and add on the salt field to it (pretty much what you said but in php). Yet, for one I don't know where it is and I wouldn't know how to add it lol **Edit** Okay I merged the two databases I removed vb's salt and added in a second hash to the server
|
 |
«
Previous Thread
|
Next Thread
»
Linear Mode
|
|
All times are GMT. The time now is 10:49 PM.