Is this "ZC_" the salt used with MD5 for the admin login password
Is this "ZC_" the salt used with MD5 for the admin login password
No .
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Please tell me why you're asking that question. It sounds to me like you're trying to reverse-engineer passwords. Why on earth would I ever tell you how to do that!!!!!!
SALT is very well described in wikipedia and numerous other places in conjunction with cryptography methodologies.
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Not trying to reverse-engineer passwords, I use a script to generate passwords incase you get locked out of your account. I know theres a SQL script to get back in but I like to do it my way.
When looking at the password in the database I can see its using salt.
Anyway forget it gees.
Zen Cart already has a password reset feature. That's what should normally be used.
The logic for all of that is in the password functions files. A simple search of the PHP files for "salt" and/or "md5" also gives the information on how it works.
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
I did search the php files, anyway thanks for your replys you made