Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

please enlighten me about how oscommerce "retrieve" password


sydjeii

Recommended Posts

I was searching the forum about how oscommerce encrypts the data stored in the database and I found out that it uses md5 encryption. I also learned that md5 is a one way encryption and cannot be decrypted..so i was wondering how oscommerce "retrieve" (not sure about the term to use) passwords from the database example when a customer logs in.. how does oscommerce check if the password entered on the form matches the password from the database since it is encrypted and cannot be decrypted?

-=PINOY AKO=-

Link to comment
Share on other sites

With a "one way encryption" method it works like this.

 

The password is encrypted and stored in the database when it is created.

 

When the customer logs in the code takes the password typed into the box on the login page and runs it thru the same encryption then compares the result of that with what is stored in the database.

 

If the encryption of what they typed into the password box matches the encrypted data stored in the DB then they have typed in the correct password.

 

The code never recreates the original password it just compares encryption results.

If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you.

 

"Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice."

- Me -

 

"Headers already sent" - The definitive help

 

"Cannot redeclare ..." - How to find/fix it

 

SSL Implementation Help

 

Like this post? "Like" it again over there >

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...