开发者

How can I decrypt password string in PHP which was encrypted with crypt?

How can I decrypt a password string in PHP which was encrypted with crypt?

$salt = substr($_POST['password'], 0, 2);  
$password = crypt($_POST['password'],开发者_运维知识库 $salt);

I need to send the original password in a forget password e-mail.


http://php.net/manual/en/function.crypt.php

crypt — One-way string hashing

there is no reverse operation of crypt. The best you can - reset password and send it to user.


This is probably not the answer you are looking for, but this is just a more security wise practice.

Password should be One Way Hashed, when the user ask for a new Password, you should send him a temporary random password that he will change on next login.


1) you can use symmetric encryption instead of hash (crypt function is hash) - in this way you would have possibility to decrypt it.

2) usually sites services create special link and mail it to user. By this link we have page where we can change password. It is more safe way to store passwords.

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜