show user/pass on members - GoFuckYourself.com

PornDiscounts-R · 02-04-2007, 07:34 AM

Hey All

Anyone who knows how to show members user and pass on the site after they login.
this is for a network. so they have it for easy access to the other sites.

We use ccbill, paycom will also come later on. so this will have to work on both.

If you know this stuff and can set it up, please hit me up on icq for a talk.
293-676-165

Thanks

PornDiscounts-R · 02-04-2007, 10:09 AM

Bump for knowlegde on this one !!

TeenCat · 02-04-2007, 12:47 PM

you need to give them pass manually or there is no way, all passwords are crypted for sure so you cant get them

PornDiscounts-R · 02-04-2007, 12:56 PM

what do you mean with manually ?
There must still be some code, script what ever that shows it on the site after login right ?

Sites i have joined that uses ccbill, just had my user/pass standig on the site right after i login. that must be pulled from somewhere and somehow.

TeenCat · 02-04-2007, 01:11 PM

manualy i mean you choose the password for members. i am not good in english sorry. anyway, best way is to ask admins of sites where you saw that, they can help for sure

PornDiscounts-R · 02-04-2007, 01:49 PM

thanks for the suggestions.

1. it can work on random automated ccbill passes. so this is possiple for sure, it is on the site i saw it on.
the site i joined dosent even have a contact email. pro site right LOL
so can`t ask thee either. so have to search on and look for it, or hope someone on the big gfy`ers can help out.

mlove · 02-05-2007, 02:01 AM

In php, your authenticated username/pass are stored in the following variables:

$_SERVER["PHP_AUTH_USER"]
$_SERVER["PHP_AUTH_PW"]

You should be able to do something like

<?php
$user = $_SERVER["PHP_AUTH_USER"];
$pass = $_SERVER["PHP_AUTH_PW"];
echo "Username: $user<br />Password: $pass";
?>

I'm not completely sure if those are carried through the entire session. I'm pretty sure they will be though.

AMP-E · 02-05-2007, 05:01 AM

Quote:

Originally Posted by mlove

In php, your authenticated username/pass are stored in the following variables:

$_SERVER["PHP_AUTH_USER"]
$_SERVER["PHP_AUTH_PW"]

You should be able to do something like

<?php
$user = $_SERVER["PHP_AUTH_USER"];
$pass = $_SERVER["PHP_AUTH_PW"];
echo "Username: $user<br />Password: $pass";
?>

I'm not completely sure if those are carried through the entire session. I'm pretty sure they will be though.

i think that should work. if you're using htaccess authentication, you can use what mlove posted. the username and password should pass between pages on same server. correct me if i'm wrong

TeenCat · 02-05-2007, 09:19 AM

i dont think this can work. you can take the password before it will be written to the htpasswd file, anyway you will get only password hashed like "tester:56LS4f/00EMHU" ... maybe you have to ask ccbill for the solution, they have to the only one who can help right. btw, there is some law about privacy or something that you dont have to know members password, or isnt? only admin will get password of member, but you dont have privileges to show it anywhere... just

Maximum Cheese · 02-05-2007, 10:18 AM

I know with Strongbox you can display the username anywhere in the members area after they log in

PornDiscounts-R · 02-05-2007, 11:54 AM

Hey all.

Great things to go on here. ccbill cant / will not help on this. i have asked them.
But i will follow up on the code and see how it goes.

Thanks a lot
Rasmus

raymor · 02-05-2007, 01:32 PM

Quote:

Originally Posted by Maximum Cheese

I know with Strongbox you can display the username anywhere in the members area after they log in

With Strongbox you can go one better - link from the members' area of one site to the
members' area of another without the user having to enter their user name and password
on the second site. That comes in handy because you don't have to synchronize the
passwords on the other sites as well as of course making it easier for the user.

Be careful with anything you do that displays the password. It would be easy to make
a mistake that would all someone to see a different users password.

mlove · 02-05-2007, 02:14 PM

Quote:

Originally Posted by TeenCat

i dont think this can work. you can take the password before it will be written to the htpasswd file, anyway you will get only password hashed like "tester:56LS4f/00EMHU" ... maybe you have to ask ccbill for the solution, they have to the only one who can help right. btw, there is some law about privacy or something that you dont have to know members password, or isnt? only admin will get password of member, but you dont have privileges to show it anywhere... just

My passwords were encrypted, and authentication data was displayed just fine.

raymor · 02-06-2007, 01:10 PM

Quote:

Originally Posted by mlove

My passwords were encrypted, and authentication data was displayed just fine.

Prior to PHP, TeenCat was right, passwords were treated as information known only
to the user. Only a HASH of the password was saved in the password file, so the only
way for a bad guy to get the password was if the user gave it to the bad guy.
Apache set a variable for the user name so scripts could tell who the usr was, but the
passsword was a secret only the user knew. PHP of course took it's priority list from
Windows, were security is a footnote on page #762, so the PHP guys dug into the
Apache request_rec, got the password submitted by the user, and put it in a nice
variable so that all a hacker has to do is get you to post on a PHP forum and in most
cases he can easily crack the forum to have it include your password in a comment
tag within your post.

02-04-2007, 07:34 AM	#1
PornDiscounts-R Confirmed User Industry Role: Join Date: Aug 2006 Location: Denmark Posts: 1,272	show user/pass on members Hey All Anyone who knows how to show members user and pass on the site after they login. this is for a network. so they have it for easy access to the other sites. We use ccbill, paycom will also come later on. so this will have to work on both. If you know this stuff and can set it up, please hit me up on icq for a talk. 293-676-165 Thanks

02-04-2007, 12:47 PM	#3
TeenCat Too lazy to set a koala Industry Role: Join Date: Jan 2007 Location: CZ/EU forever! Posts: 16,139	you need to give them pass manually or there is no way, all passwords are crypted for sure so you cant get them __________________ 6bot / Coming again very soon! Svit Zlin Radio 24/7!

02-04-2007, 01:11 PM	#5
TeenCat Too lazy to set a koala Industry Role: Join Date: Jan 2007 Location: CZ/EU forever! Posts: 16,139	manualy i mean you choose the password for members. i am not good in english sorry. anyway, best way is to ask admins of sites where you saw that, they can help for sure __________________ 6bot / Coming again very soon! Svit Zlin Radio 24/7!

02-05-2007, 09:19 AM	#9
TeenCat Too lazy to set a koala Industry Role: Join Date: Jan 2007 Location: CZ/EU forever! Posts: 16,139	i dont think this can work. you can take the password before it will be written to the htpasswd file, anyway you will get only password hashed like "tester:56LS4f/00EMHU" ... maybe you have to ask ccbill for the solution, they have to the only one who can help right. btw, there is some law about privacy or something that you dont have to know members password, or isnt? only admin will get password of member, but you dont have privileges to show it anywhere... just __________________ 6bot / Coming again very soon! Svit Zlin Radio 24/7!

02-05-2007, 11:54 AM	#11
PornDiscounts-R Confirmed User Industry Role: Join Date: Aug 2006 Location: Denmark Posts: 1,272	Hey all. Great things to go on here. ccbill cant / will not help on this. i have asked them. But i will follow up on the code and see how it goes. Thanks a lot Rasmus __________________ Email# rasmus(you*know)porndiscounts.com

02-04-2007, 10:09 AM	#2
PornDiscounts-R Confirmed User Industry Role: Join Date: Aug 2006 Location: Denmark Posts: 1,272	Bump for knowlegde on this one !!

02-04-2007, 12:56 PM	#4
PornDiscounts-R Confirmed User Industry Role: Join Date: Aug 2006 Location: Denmark Posts: 1,272	what do you mean with manually ? There must still be some code, script what ever that shows it on the site after login right ? Sites i have joined that uses ccbill, just had my user/pass standig on the site right after i login. that must be pulled from somewhere and somehow.

02-04-2007, 01:49 PM	#6
PornDiscounts-R Confirmed User Industry Role: Join Date: Aug 2006 Location: Denmark Posts: 1,272	thanks for the suggestions. 1. it can work on random automated ccbill passes. so this is possiple for sure, it is on the site i saw it on. the site i joined dosent even have a contact email. pro site right LOL so can`t ask thee either. so have to search on and look for it, or hope someone on the big gfy`ers can help out.

02-05-2007, 02:01 AM	#7
mlove the guy Industry Role: Join Date: Apr 2005 Posts: 764	In php, your authenticated username/pass are stored in the following variables: $_SERVER["PHP_AUTH_USER"] $_SERVER["PHP_AUTH_PW"] You should be able to do something like <?php $user = $_SERVER["PHP_AUTH_USER"]; $pass = $_SERVER["PHP_AUTH_PW"]; echo "Username: $user<br />Password: $pass"; ?> I'm not completely sure if those are carried through the entire session. I'm pretty sure they will be though. __________________ If you won't feel as good, I won't feel as cheap.

02-05-2007, 10:18 AM	#10
Maximum Cheese Registered User Join Date: Feb 2007 Location: Atlanta, Ga Posts: 5	I know with Strongbox you can display the username anywhere in the members area after they log in