Password Security

[Galdan]

Hi Guys,

i have installed the "Password Security" Mod (http://www.thewebworks.com/) in my old Y1G, so there are all Passwords encrypted. When i use now the converter every Member has a new Password because SE didnt use encrypted passes in the database.

Is there a possibility to deencrypt the old passes or write a mod for SE?

Thanks you a lot

Galdan

[alexrolko]

YaBB SE does in fact encrypt the passwords. if you've converted over with encrypted passwords, get your members to just do a forgotten password reminder and YaBB SE will send a new password.

[Joseph Fung]

Just as a further point no, you can't decrypt them

[Galdan]

But I think its not reasonable for my users that everyone must send his own password. Or is there a function with that i can send every user the password?

thanks

[Jeff Lewis]

There is not a function.  They will have to do that.  You can't decrypt the passwords so this is what you'll have to get them to do.

[Joseph Fung]

We had a debate about this during the beta-testing process, and we decided that its easy enough for webmaster with the encryption mod to use the mailing list feature to send everyone a link to the "forgot password" utility.

[adams]

On this topic. How hard is it to use the YaBBSE mySQL database to authenicate in other areas of my site. For example, I have a file upload feature on my site that I currently use .htaccess files to limit access (as I dont' want just anyone uploading through apache). I would like to port this so that the page verifies users through the yabbSE users db. Is this going to be hard to do? (as the passwords arn't in plain text when I view them in myPHPadmin I'm not sure how to do it.