Md5 [Arhiva foruma] - Web hosting digg forums Hrvatska powered by ShopCentar.hr

View Full Version : Md5

.:Phre/\kBox:.

02-01-2006, 16:02

Sretna Nova 2006. Sve najbolje povodom Nove godine! Bozicnu cestitku sam poslao.

Problem je sljedeci:
najobicniji kod treba pretvoriti polja i upit bazi podataka u MD5() enkripciju.

Konkretno: U kodu za upit lozinke nije postavljen MD5(), a buduci da u bazi podataka imam lozinke sa MD5() enkripcijom, u kodu bi trebao postavio MD5() funkciju.

Ovo je kompletni kod:

<?
include "session.php";
include_once "config.php";

if(!isset($_REQUEST['UserName']) || ($_REQUEST['UserName']=="") || !isset($_REQUEST['Password']) || ($_REQUEST['Password']=="") )
{
header("Location: ". "signinform.php?msg=".urlencode("Please enter login information!"));
die();
}

$user_password = 'md5(".$_REQUEST["Password"].")';

$sql = "SELECT * FROM phpbb_users WHERE username = '" . $_REQUEST['UserName'] . "' AND '$user_password'";

$rs_query=mysql_query($sql);
if ( $rs=mysql_fetch_array($rs_query) )
{
if($rs["$user_password"] == $_REQUEST["Password"])
{
$_SESSION["name"]=$rs["username"];
$_SESSION["userid"]=$rs["id"];
header("Location: ". "userhome.php?pg=1&msg=welcome ".$_SESSION["name"]);
die();
}
}
header("Location: ". "signinform.php?msg=". urlencode("Please enter correct login information!") );
die();
?>

Gresku ne javlja, ali nakon upita u formu username i passworda, veli da nije korektan upit (odnosno password nije dobar):

Cini mi se da nesto nije uredu sa linijom broj 16:
if($rs["$user_password"] == $_REQUEST["Password"])

Pozdrav, hvala na pomoci.

administrator

02-01-2006, 16:30

md5 primjeri:

http://www.php.net/manual/en/function.md5.php

<?php
<?php
<?php
$str = 'apple';

if (md5($str) === '1f3870be274f6c49b3e31a0c6728957f') {
echo "Would you like a green or red apple?";
exit;
}
?>
<CODE><CODE><CODE></CODE>
</CODE></CODE>

pozdrav, SC

.:Phre/\kBox:.

02-01-2006, 21:46

Evo, konacno mi je proradio session. Radi se o skripti, download sekcija, slicno hotscripts-u, i morao sam izmjene napraviti kako bi mogao loginirati kroz phpbb tablice od foruma. Sad konacno radi. Evo kompletan kod:

<?
include "session.php";
include_once "config.php";

if(!isset($_REQUEST['UserName']) || ($_REQUEST['UserName']=="") || !isset($_REQUEST['Password']) || ($_REQUEST['Password']=="") )
{
header("Location: ". "signinform.php?msg=".urlencode("Please enter login information!"));
die();
}

$sql = "SELECT * FROM phpbb_users WHERE username = '" . $_REQUEST['UserName'] . "' AND user_password = MD5('".$_REQUEST["Password"]."')";

$rs_query=mysql_query($sql);
if ( $rs=mysql_fetch_array($rs_query) )
{
if(md5($_REQUEST["Password"]) === $rs["user_password"])
{
$_SESSION["name"]=$rs["username"];
$_SESSION["userid"]=$rs["id"];
header("Location: ". "userhome.php?pg=1&msg=welcome ".$_SESSION["name"]);
die("Greska 1");
}
}
header("Location: ". "signinform.php?msg=". urlencode("Please enter correct login information!") );
die("Greska 2");
?>