Page 1 of 1

How to retrieve original password which wa encrypted

Posted: Sat Dec 05, 2009 11:24 am
by adsegzy
Hello people,

I have a membership site where people register. I encrypted their password for security purpose and tis working fine, members are also logining in comfortably. If a member forget his password, i ask for his first name, last name and email address; once the three are correct, his email will be sent to box. but how do i send the original password to the member and not encrypted one?
Eg the password is 'book' and the encrypt is '821f03288846297c2cf43c34766a38f7'

How do i send 'book' to his email and not '821f03288846297c2cf43c34766a38f7'

regards

Re: How to retrieve original password which wa encrypted

Posted: Sat Dec 05, 2009 11:49 am
by jackpf
That depends what kind of encryption you used...

You need to use the reverse algorithm to decrypt it.

Re: How to retrieve original password which wa encrypted

Posted: Sat Dec 05, 2009 11:55 am
by Eran
That's probably a hash and not an encryption. most hashes are one-way transformations, meaning you can't get back the original value from it. In this case, you usually have to reset the password and send the user a new one.

Re: How to retrieve original password which wa encrypted

Posted: Sat Dec 05, 2009 11:58 am
by askbapi
pytrin wrote:That's probably a hash and not an encryption. most hashes are one-way transformations, meaning you can't back the original value from it. In this case, you usually have to reset the password and send the user a new one.
Yes, u have hashed it, so no going back. Better create a new password and send it to the user.