Random Technical Question

**picklemonkey** · January 13, 2005, 12:32:06 PM

Originally posted by Encryption

damn, u PWNED Me on that one....

I find it hard to believe that its printing out the passwords directly on an http transfer, I know I read it somewhere on their forums that passwords are changed and transmitted over the net.....

guess that answers your Q herogee....

-e-

in order for it to be encrypted in the PHP, there would be some sort (VBScript/JavaScript/PHPscript) of plain-text procedure written in the PHP code itself... which could be used to just write the decrpyter. If someone really wanted to find the encrypted password they could just sniff the login page, get the encrypt script, and write a decrypter. I suppose it would be a little more secure, but it would still be easily breakable since the encrypting procedure would be transmitted in plain text too.

To make it secure it would probably need to be an https connection, or maybe submitted in a flash frame or something

Originally posted by Encryption

I find it hard to believe that its printing out the passwords directly on an http transfer

You'd believe if we were on the same subnet

**Civic_Zen** · January 13, 2005, 12:34:35 PM

I'm sure there are php encryption plugins for the board if this is something you really wanted to implement. Most boards, whether phpBB, vBulliten, ezboard or Invision. Whatever software they are using they usually don't bother encrypting the passwords, but I know its an option with most of the big BB softwarez.

**Kamal** · January 13, 2005, 12:38:06 PM

well in order to sniff it this way, you'd need to be on the same network and if you're not, you'd need to hack it to get into the network....

it'd be hard to remote sniff something, unless pickle's got something else for that too

-e-

**picklemonkey** · January 13, 2005, 01:35:51 PM

I got's something for ya right here

**Kamal** · January 13, 2005, 01:37:34 PM

PWNED

**herogee** · January 14, 2005, 11:34:06 AM

Originally posted by picklemonkey

I work in IT. I already have a packet sniffer installed.

Scary.

So much for our member's security

**rewing3** · January 14, 2005, 11:50:03 AM

Damn pickle ur the man. In IT anything is possible. Don't ever say something can't be done b/c it probably already has.

**Steve Graham** · January 14, 2005, 11:51:34 AM

Package Sniffer?

**remoh** · January 14, 2005, 01:22:08 PM

any package ticklers out there?

MJ · January 14, 2005, 02:46:45 PM

Originally posted by unome

Package Sniffer?

My next dour neighbours dog is a package sniffer. Evey time i go round there it shoves him nose in my lower regions.

**picklemonkey** · January 14, 2005, 03:44:46 PM

I've been known to tickle my pickle from time to time

Random Technical Question

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Today's Birthdays

[ms] Statistics