php coders : need a little help - GoFuckYourself.com

flashfreak · 04-01-2003, 03:30 AM

How can I retrieve the username : password from a paysite members area in PHP?
I want to make a protection script, pls help.

Thanks!

Libertine · 04-01-2003, 03:33 AM

Ehm... what exactly do you mean by retrieve?
Retrieve it from the .htpasswd file, from a database or from the user?

nuclei · 04-01-2003, 03:44 AM

in php $_SERVER[PHP_AUTH_USER] will get you the username. You then would have to open the password file to get the "encrupted" password. If the password is stored in mysql somewhere then you can retrieve the unencrypted pass from there using the username you now have.

nuclei · 04-01-2003, 03:44 AM

Quote:

Originally posted by nuclei
in php $_SERVER[PHP_AUTH_USER] will get you the username. You then would have to open the password file to get the "encrypted" password. If the password is stored in mysql somewhere then you can retrieve the unencrypted pass from there using the username you now have.

nuclei · 04-01-2003, 03:45 AM

well hell, that was sposed to be an Edit to change encrupted to encrypted....

must be getting early or late

flashfreak · 04-01-2003, 09:07 AM

Quote:

Originally posted by punkworld
Ehm... what exactly do you mean by retrieve?
Retrieve it from the .htpasswd file, from a database or from the user?

if that helps: the members area is ccbill protected.. I don't know how they store the username : password...

flashfreak · 04-01-2003, 09:11 AM

Quote:

Originally posted by nuclei
in php $_SERVER[PHP_AUTH_USER] will get you the username. You then would have to open the password file to get the "encrupted" password. If the password is stored in mysql somewhere then you can retrieve the unencrypted pass from there using the username you now have.

thanks, I'l try that.. after all I don't need the password, since usernames are unique. I'm trying to protect the members area from password listing sites, so the user doesn't log from 3 different IPs in 3 hours... stuff like this...

sneaker · 04-01-2003, 09:31 AM

Look for a htaccess auth class module for php, there are a few out there try www.phpclasses.org

nuclei · 04-01-2003, 09:33 AM

Quote:

Originally posted by flashfreak

thanks, I'l try that.. after all I don't need the password, since usernames are unique. I'm trying to protect the members area from password listing sites, so the user doesn't log from 3 different IPs in 3 hours... stuff like this...

welcome.

04-01-2003, 03:30 AM	#1
flashfreak Confirmed User Industry Role: Join Date: Jun 2002 Location: cloud number 9 Posts: 4,396	php coders : need a little help How can I retrieve the username : password from a paysite members area in PHP? I want to make a protection script, pls help. Thanks! __________________ SEO Mogul \| ICQ: 163671223

04-01-2003, 03:33 AM	#2
Libertine sex dwarf Join Date: May 2002 Posts: 17,860	Ehm... what exactly do you mean by retrieve? Retrieve it from the .htpasswd file, from a database or from the user? __________________ /(bb\|[^b]{2})/

04-01-2003, 03:44 AM	#3
nuclei old school fart Industry Role: Join Date: May 2001 Location: Florida Posts: 1,015	in php $_SERVER[PHP_AUTH_USER] will get you the username. You then would have to open the password file to get the "encrupted" password. If the password is stored in mysql somewhere then you can retrieve the unencrypted pass from there using the username you now have. __________________ The next generation of SEO

04-01-2003, 03:45 AM	#5
nuclei old school fart Industry Role: Join Date: May 2001 Location: Florida Posts: 1,015	well hell, that was sposed to be an Edit to change encrupted to encrypted.... must be getting early or late __________________ The next generation of SEO

04-01-2003, 09:31 AM	#8
sneaker So Fucking Banned Join Date: Dec 2002 Posts: 251	Look for a htaccess auth class module for php, there are a few out there try www.phpclasses.org