- Moderated by:
- Support Team
Secure login hack
-
- rank:
-
Professional
- registered:
- September 2003
- Status:
- offline
- last visit:
- 21.10.07
- Posts:
- 2423
I stumbled on a javascript implementation of the MD5 algorithm and hacked it into the system.. it allows for passwords to be encrypted "before" the form is submitted.. it also uses a truncated hash to prevent the potential for a replay compromise (logging in with the encrypted password).
Demo
Download
note: this is a hack. core files were slightly modified. backup your files before installing and use at your own risk. requires PostNuke version .762
bye now,
-IR
[edit: bad link]
--
http://www.invalidresponse.com
-
- rank:
-
Professional
- registered:
- September 2003
- Status:
- offline
- last visit:
- 21.10.07
- Posts:
- 2423
Slugger
Or is that..."buy now".
silly slugg-o :D .. it's a thankless "job".. and I'm privileged to do it.
--
http://www.invalidresponse.com
-
- rank:
-
Professional
- registered:
- September 2003
- Status:
- offline
- last visit:
- 21.10.07
- Posts:
- 2423
..just to avoid any confusion the above comment may cause.. there's no "fee".. it's a free download.
--
http://www.invalidresponse.com
|
