MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.4 > MyBB 1.4 General Support > Password encryption
Full Version: Password encryption
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

notorious mental

2009-12-28, 11:18 PM
I would like to ask, what are the myBB passwords encrypted in. For example when you go to adminPHP you see the encrypted password. What is this encryption?

Thanks.

KuJoe

2009-12-28, 11:35 PM
Salted MD5.

Matt

2009-12-28, 11:41 PM
$encrypted_password = md5(md5($salt).md5($plaintext_password));

So when you login it md5s what you put in, md5s the salt, joins these together, md5s that, if that matches the password in the database, it logs you in.

Dylan M.

2009-12-29, 07:00 PM
And it does check for plain MD5 passwords as well, in the event you've got user's with old passwords that haven't been salted. Not that this should be an issue.
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.4 > MyBB 1.4 General Support > Password encryption