Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
 Password:
Save Password
Forgot your Password?

 All Forums
 Help Groups for Snitz Forums 2000 Users
 Help: General / Classic ASP versions(v3.4.XX)
 UnEncrypting The Passwords!!		  New Topic  Topic Locked
 Printer Friendly
Author Previous Topic Topic Next Topic  

JacobW
Licensing Agreement Violator

2 Posts
Posted - 20 August 2002 :  23:39:35  Show Profile  Send JacobW an AOL message
In my Forums, I like to edit admin_emaillist.asp to list the members passwords, but I noticed the when I did it with the 3.4 version of the forum I got a bunch of jumble, instead of the members password.
Is there anyway I can undo the encrypting??

Thanks for any help.
Jacob

RichardKinser
Snitz Forums Admin

USA
16655 Posts
Posted - 20 August 2002 :  23:44:08  Show Profile
It's a one-way encryption, they can't be un-encrypted.
Go to Top of Page

Aaron S.
Average Member

USA
985 Posts
Posted - 20 August 2002 :  23:48:14  Show Profile  Visit Aaron S.'s Homepage
Does this mean "Forgot your password" is gone?

--Aaron
DOWNLOAD GREAT NEW MODS HERE
Go to Top of Page

dayve
Forum Moderator

USA
5820 Posts
Posted - 20 August 2002 :  23:50:39  Show Profile  Visit dayve's Homepage
quote:
Originally posted by Aaron S.

Does this mean "Forgot your password" is gone?

--Aaron




no, if you forget your password, it is reset, encrypted and a verification link is sent to your email address so it can be validated. once validated you can log on and change your password. I suggest trying out the feature so you get a better idea. just log out of snitz and click on Forgot Your Password link.

make sure your email address is valid!!!
Go to Top of Page

bax
Junior Member

141 Posts
Posted - 21 August 2002 :  00:33:19  Show Profile
BTW, if you want to change it so that nothing is encrypted, it takes about ten seconds to do. This would mean if you want to leave everything unencrypted, you can. I'm not saying this is good, or recommended, or condoned, just possible. If you're interested in the workaround, let me know.
Go to Top of Page

alex042
Average Member

USA
631 Posts
Posted - 21 August 2002 :  00:33:34  Show Profile  Send alex042 an AOL message  Send alex042 a Yahoo! Message
quote:
It's a one-way encryption, they can't be un-encrypted.


I guess that means I can write off the 'show member password' MOD then.
Go to Top of Page

bjlt
Senior Member

1144 Posts
Posted - 21 August 2002 :  00:36:34  Show Profile
quote:
Originally posted by JacobW

In my Forums, I like to edit admin_emaillist.asp to list the members passwords, but I noticed the when I did it with the 3.4 version of the forum I got a bunch of jumble, instead of the members password.
Is there anyway I can undo the encrypting??

Thanks for any help.
Jacob


cncrypted passwords are better. most people feel more secure if their passwords are encrypted and even the admin and people have access to the server can't see it. Some of them may use the passwords for other purposes as well, as an forum admin I'd rather not to know their passwords at all. Or you can have a survey what your users like, personally I think the answer is obvious.
Go to Top of Page

bax
Junior Member

141 Posts
Posted - 21 August 2002 :  00:50:10  Show Profile
Actually, I think it's a bit more complex than that - many of the users on our sites have no clue about this stuff. Even implementing the whole:

You will be emailed your password, and you will need to click a link to confirm your registration thing gets way over their head, and we find that subscription drops significantly. It depends on your audience - lots of times our audience isn't developers - it's people who just want to get relevant information for themselves. So, it's a tradeoff with this type of thing.
Go to Top of Page

bjlt
Senior Member

1144 Posts
Posted - 21 August 2002 :  00:55:13  Show Profile
now you are emailed an activation link instead of a random password like what it did before. user now can use password of their choice during registration and later to click on the link in their email for activation. this can eliminate fake registration/bad email address.

I think you can turn activation off in the admin pannel then they don't need to activate at all.

I agree that the random password method in the previous mod was not good enough.
Edited by - bjlt on 21 August 2002 01:01:08
Go to Top of Page

TestMagic
Senior Member

USA
1568 Posts
Posted - 21 August 2002 :  02:35:58  Show Profile  Visit TestMagic's Homepage
Actually, even as an admin, I prefer not knowing people's passwords. Somehow, it feels like something I shouldn't know. I just don't want to have that sort of "intimate" access to anybody's information.
Snitz rocks! · Search 2
Go to Top of Page

joatham
Junior Member

United Kingdom
169 Posts
Posted - 21 August 2002 :  07:19:03  Show Profile  Visit joatham's Homepage
I agree with that, as an NT/Win2K/Unix administrator I can change or reset people's passwords, but I can't view them, and that's the way it should be.
Go to Top of Page

HuwR
Forum Admin

United Kingdom
20584 Posts
Posted - 21 August 2002 :  07:30:53  Show Profile  Visit HuwR's Homepage
quote:

You will be emailed your password, and you will need to click a link to confirm your registration thing gets way over their head, and we find that subscription drops significantly. It depends on your audience - lots of times our audience isn't developers - it's people who just want to get relevant information for themselves. So, it's a tradeoff with this type of thing.


This is standard practice on the internet, most sites require you to follow a link from an emal to validate your account information, if they didn't I would consider them to be very suspect.
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Topic Locked
 Printer Friendly
Jump To:
Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.36 seconds. Powered By: Snitz Forums 2000 Version 3.4.07