小贝子编程

mybb数据库中密码的加密方法



谁能告诉我mybb使用什么方法加密数据库中的密码?因为每次我使用用户和密码(正确的用户和通过)时,我都有这个代码的问题,我有错误:"不正确的用户和密码"

我把你的代码的3部分,我需要帮助在这方面(我认为我有一个问题在类登录):

谢谢你的帮助。

class DB
{
    var $connection;
    var $started;
    function start()
    {
        global $MySQL_Host, $MySQL_User, $MySQL_Pass, $MySQL_DB;
        $this->connection = mysql_connect( $MySQL_Host, $MySQL_User,     $MySQL_Pass );
        mysql_select_db( $MySQL_DB, $this->connection );
    }
    function query( $query )
    {
        $result = mysql_query( $query, $this->connection );
        if( $result )
        {
            return mysql_fetch_full_result_array( $result );
        }
        else
        {
            return $result;
        }
    }
    function end()
    {
        mysql_close( $this->connection );
    }
    function isStarted()
    {
        return $started;
    }
}
function mysql_fetch_full_result_array( $result )
{
    $table_result = array();
    $r = 0;
    if( $result === true )
    {
        return $result;
    }
    if( mysql_num_rows( $result ) == 0 )
    {
        return $result;
    }
    while( $row = mysql_fetch_assoc( $result ) )
    {
        $arr_row = array();
        $c = 0;
        while ( $c < mysql_num_fields( $result ) )
        {       
            $col = mysql_fetch_field( $result, $c );   
            $arr_row[ $col -> name ] = $row[ $col -> name ];           
            $c++;
        }   
        $table_result[ $r ] = $arr_row;
        $r++;
    }   
    return $table_result;
}

class Login
{
    function CheckLogin( $username, $password )
    {
        $db = new DB();
        $db->start();
        $query = "SELECT uid, password, email FROM mybb_users WHERE username='".$username."' AND password='".md5(md5($salt).md5($password))."';";
        $result = $db->query( $query );
        $db->end();
        if( $result == false )
            return false;
 //             fwrite($fh, $result);
 //             fclose($fh);

        if( md5(md5($salt).md5($password)) == $result[ 0 ][ 'password' ] )
        {
            return array( 'uid' => $result[ 0 ][ 'uid' ],
                          'mail' => $result[ 0 ][ 'email' ],
                          'user' => $username
                        );
        }
    }
}

您的查询使用$salt,但我没有看到它在代码中的任何地方声明

$query = "SELECT uid, password, email FROM mybb_users WHERE username='".$username."' AND password='".md5(md5($salt).md5($password))."';";

相关内容

  • 没有找到相关文章

最新更新


热门标签:

javascript python java c# php android html jquery c++ css ios sql mysql arrays asp.net json python-3.x ruby-on-rails .net sql-server django objective-c excel regex ruby linux ajax iphone xml vba spring asp.net-mvc database wordpress string postgresql wpf windows xcode bash git oracle list vb.net multithreading eclipse algorithm macos powershell visual-studio image forms numpy scala function api selenium