2006-06-08, 12:57 PM
I want to integrate php121 messenger in to my forum. It has an option to use the existing mybb user database. However it uses simple md5 passwords and not the salted type as in mybb.
Please could you give me some pointers on how to use the salted passwords.
Here is an extract from the login module of php121:
Any ideas would be welcome.
The website is www.php121.com
Please could you give me some pointers on how to use the salted passwords.
Here is an extract from the login module of php121:
Quote:function userLookup($username, $password) {
global $php121db, $password;
global $db_usertable, $dbf_uid, $dbf_uname, $dbf_upassword, $dbf_salt, $dbf_passwordtype, $dbf_uemail;
global $dbf_user_chatting, $dbf_smilies, $dbf_level, $dbf_showrequest;
global $dbf_upassword_len;
$stop = "";
if (mysql_num_rows(mysql_query("SELECT $dbf_uname FROM $db_usertable WHERE $dbf_uname='$username'",$php121db)) == 0) $stop .= _USERNAME_NOT_FOUND . "<br>";
if ($stop == ""){
$row = mysql_fetch_row(mysql_query("SELECT $dbf_upassword from $db_usertable WHERE $dbf_uname='$username'", $php121db));
if ($dbf_passwordtype == "plaintext") {
if ($row[0] != substr(md5($password), 0, $dbf_upassword_len)) $stop .= _INCORRECT_PASSWORD . "<br>";
} else if ($dbf_passwordtype == "md5") {
if ($row[0] != substr($password, 0, $dbf_upassword_len)) $stop .= _INCORRECT_PASSWORD . "<br>";
}
}
return($stop);
}
Any ideas would be welcome.
The website is www.php121.com