Help With Register Dialog. - Printable Version

+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Scripting Help (https://sampforum.blast.hk/forumdisplay.php?fid=12)
+---- Forum: Help Archive (https://sampforum.blast.hk/forumdisplay.php?fid=89)
+---- Thread: Help With Register Dialog. (/showthread.php?tid=225504)

---

Help With Register Dialog. - Tessar - 13.02.2011

>>Removed Due To Second Thoughts<<

---

Re: Help With Register Dialog. - JaTochNietDan - 13.02.2011

Well the reason there is quite simple, you should be storing it as a string, not an integer.

Although I would like to stress that storing non-hashed passwords is a serious security flaw, your players would not be happy about their password being stored in plain text for anyone with access to use. With this said, udb_hash (Adler32) is not a reliable hashing method. You should use a method such as Whirlpool.

---

Re: Help With Register Dialog. - Tessar - 13.02.2011

I understand. I will revert back to use "udb hash". I thought it would be quite a simple way of helping people if they had forgotten their passwords ingame.

---

Re: Help With Register Dialog. - JaTochNietDan - 13.02.2011

If people forget their password, you don't send it back to them, because you shouldn't be able to. Have you ever seen a decent site with a password recovery function that actually sends back your real password?

Simply because they shouldn't be able to since it's hashed, they always either generate a new one and send you that, or else make you set a new one yourself. If you want to reset people's passwords, just generate a new one for them, hash it and store it in their file.

---

Re: Help With Register Dialog. - Tessar - 13.02.2011

Kk thankyou for the advise!

---