| From: | Fery(at)mik(dot)co(dot)id |
|---|---|
| To: | Matthew Horoschun <mhoroschun(at)canprint(dot)com(dot)au> |
| Cc: | <busby(at)pnts(dot)com>, <pgsql-php(at)postgresql(dot)org>, <pgsql-php-owner(at)postgresql(dot)org> |
| Subject: | Re: Creating md5 passwords in PHP for the PostgreSQL pg_shadow table |
| Date: | 2003-01-22 02:51:49 |
| Message-ID: | OFBAC212DF.CCA32EB9-ON47256CB5.000F4B6E@fw |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-php |
Dear All,
When I do CREATE USER [user] WITH PASSWORD 'password'
why the encryption didn't work ? I saw in the pg_shadow table look like as
i set the password ?
SELECT * FROM PG_SHADOW
in password field will shown : 'password' ??????
Is there any way to activate md5 encryption in PostgreSQL ? or It was done
by compiling it when first installation ????
thankss
Best Regards,
Fery Gideon
IT Specialist
PT. Mitra Integrasi Komputindo
ASPAC Kuningan - 8th floor, Suite 805
Jl. H.R. Rasuna Said Kav. X-2 No. 4, Jakarta 12950
Phone: (62-21) 522-8322(ext 102), Fax: (62-21) 522-8321
e-mail: fery(at)mik(dot)co(dot)id
Matthew Horoschun
<mhoroschun(at)canprint To: "David Busby" <busby(at)pnts(dot)com>
.com.au> cc: pgsql-php(at)postgresql(dot)org
Sent by: Subject: Re: [PHP] Creating md5 passwords in PHP for the PostgreSQL
pgsql-php-owner(at)post pg_shadow table
gresql.org
01/21/2003 05:10 AM
Hi David,
Thanks for the reply.
Unfortunately, thats not quite the problem. I want to create passwords
that will work in the pg_shadow table. So, I need them to be calculated
in exactly the same way PostgreSQL does when you do a CREATE USER
matthew WITH PASSWORD testing.
For example, If I create a user in PostgreSQL called 'matthew' with
password 'testing', I get pg_shadow entry with passwd:
md5759af56ffaf865413f7a50b4fae20ea3
but, if I do a simple md5 of 'testing' like you've done below, I get:
ae2b1fca515949e5d54fb22b8ed95575
As you can see, those don't match.
Perhaps I'm missing something though?
Cheers
Matthew.
On Tuesday, January 21, 2003, at 05:27 AM, David Busby wrote:
> Matthew,
> I just use something like
> $pass = $_POST['pass'];
> $e_pass = md5($passs);
> Maybe not as secure as two md5s, but have you ever tried to
> reverse one
> md5 checksum?
--
Matthew Horoschun
Network Administrator
CanPrint Communications Pty. Ltd.
Mobile: 0417 282 378
Direct: (02) 6295 4544
Telephone: (02) 6295 4422
Facsimile: (02) 6295 4473
---------------------------(end of broadcast)---------------------------
TIP 2: you can get off all lists at once with the unregister command
(send "unregister YourEmailAddressHere" to majordomo(at)postgresql(dot)org)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Luke Woollard | 2003-01-22 03:00:04 | Password Encryption to replicate MySQL PASSWORD function |
| Previous Message | cmr | 2003-01-21 22:55:06 | Re: PHP-Postgresql in WindowsXP |