Page Index Toggle Pages: 1
Topic Tools
Normal Topic Encode Passwords in memberlist.inactive (Read 1,010 times)
Dandello
YaBB Administrator
YaBB Next Team
Operations Team
Beta Testers
Support Team
*****
Offline



Posts: 2,263
Location: Earth

YaBB 2.6.0
Re: Encode Passwords in memberlist.inactive
Reply #1 - Nov 6th, 2012 at 9:31pm
Post Tools
This Topic was moved here from YaBB 2 - Bugs [Need Verification] [move by] Dandello.
  

If you only have one solution to a problem you're not trying hard enough!
Back to top
WWW  
IP Logged
 
Derek Barnstorm
Support Team
YaBB Next Team
Development Team
Beta Testers
****
Offline



Posts: 1,269
Location: United Kingdom

None
Encode Passwords in memberlist.inactive
Aug 23rd, 2012 at 2:50am
Post Tools
Passwords aren't being encrypted in the memberlist.inactive file - obviously passwords should never be revealed to website owners.

In Register.pl find:

Code (Perl)
Select All
        if ($do_scramble_id) { $cryptuser = &cloak($reguser); } else { $cryptuser = $reguser; } 


And add after:

Code (Perl)
Select All
        $regpass = encode_password($member{'passwrd1'}); 


Find:

Code (Perl)
Select All
        print INACT "$date|$activationcode|$reguser|$member{'passwrd1'}|$member{'email'}|$user_ip\n"; 


And replace:

Code (Perl)
Select All
        print INACT "$date|$activationcode|$reguser|$regpass|$member{'email'}|$user_ip\n"; 

« Last Edit: Aug 23rd, 2012 at 3:15am by Derek Barnstorm »  
Back to top
 
IP Logged
 
Page Index Toggle Pages: 1
Topic Tools
 
  « Board Index ‹ Board  ^Top