forgot my password

PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!

Moderator: General Moderators

User avatar
John Cartwright
Site Admin
Posts: 11470
Joined: Tue Dec 23, 2003 2:10 am
Location: Toronto
Contact:

Post by John Cartwright »

Code: Select all

<?

mysql_connect("localhost","usernamehere","passwordhere");
mysql_select_db("yourdatabase";

?>
add that to the top of your script and your ready to go...

also1 I would recommend they verify their birthday, email, and middle name of osmething :P...

also2 make suyre that once they recieve their new pw... that they have an option to change their pw to whatever they need

also3 I recommend not using the 10 digit number... but rather a mix of numbers and letters.. something less easy to crack
User avatar
fresh
Forum Contributor
Posts: 259
Joined: Mon Jun 14, 2004 10:39 am
Location: Amerika

thats sounds

Post by fresh »

like good advice, I will take it, and thank you for your help on the scripts... :)
User avatar
John Cartwright
Site Admin
Posts: 11470
Joined: Tue Dec 23, 2003 2:10 am
Location: Toronto
Contact:

Post by John Cartwright »

evilmonkey wrote:I have to add a comment about md5(). It is very very very easy to hack into. If I have an md5() hash (under 6 characters), I can crack it in under 5 minutes, and I'm not even a hacker, and this stuff doesn't interest me. Don't use it to store super-sensitive data such as credit card info or bank PINs. (PIN: 4 characters, this about how easy it is to brute-force). PHP.net users have suggested a good alrenative:

Code: Select all

$password = strrev(md5(md5(strrev(md5($inputpass)))));
Be sure to use this everywhere on the site. ;)

Good luck!

how do u decrypt it?
Post Reply