Encryption In WinNT/IIS4
I'm using Windows NT with IIS 4 (it's not my fault ), and I'm wondering what encryption possibilities there are. Crypt/mcrypt/encrypt/decrypt don't seem to work. I'm using PHP4...
View Complete Forum Thread with Replies
Related Forum Messages:
NT Installation (with IIS4)
After installing PHP on an NT we are having a few problems. First we can't seem to pull up files with the extension .html but the same files will work using the extension .phtml Is this normal for NT use? No big deal if so. Second, and most important, (in a PHP program that does work on another server) I am getting the following error from pages that use ' if ($submit) '. ************************** Warning: Undefined variable: submit in includes/product.inc on line 20 ************************** The program does work correctly, it just gives this warning. What have we missed? Oh yea, we are also getting warnings referring to variables used in an email() at the end of the entire site. But the variables are coming through with the email.
View Replies !
Get Auth'd Username From IIS4 Challenge?
I'd like to setup some intranet pages that are personalized by user. However, I'd like to keep my users with one name/password that's dynamically updated in all "places" when they change their userame and password. Thus, I think I want to use IIS4's built in NT Domain auhentication. Now, I know how to suck the current authenticated user in VBScript ASP code... is there any way to get this same info in PHP? Would a session variable be the way to go, putting the auth routines in ASP and then transfering the info to PHP with session vars? or something else "Secure"? I'm not a pro on session variables.
View Replies !
Php.ini Not In C:winnt
I have php 5.2.3 installed on a win2k machine with IIS. It is working because I can see phpinfo(); My problem is there is no php.ini file in c:WINNT which is what phpinfo says for my configuration path. There is a php.ini folder in c:php where I installed it. I tried copying php.ini into that folder and then it just displays <? phpinfo(); ?> Where is phpinfo reading this stuff from?? I cant find the file to edit it.
View Replies !
Mail () On WinNT
I have written a PHP script that sends out an email using mail(). The script works fine on linux servers, my question is: If someone tried to use this script on a windows based server with PHP installed, would the mail() function still work still work?
View Replies !
PHP/Oracle-OCI/Apache On WinNT
I have just started using Oracle 8i and installed the oracle client on an NT machine to connect to a remote Oracle8 server. I have also made the corresonding changes in php.ini ...i.e enabling "extension=php_oci8.dll" .(running PHP as a module in Apache). My problem is that I am unable to connect to the oracle server using PHP. I am able to connect to the Oracle databse using the Oracle ODBC -32 bit test but when I try to connect using <? $Conn=OCILogon("username", "password", "System_Data_Source_Name"); I get an error saying :"Warning: _oci_open_server: ORA-12560: TNS:protocol adapter error in c:program files usphereapachehtdocs est.php on line 8" On the other hand instead of the sytem data source name if I decide to use the TNS_service_name like : $Conn=OCILogon("username", "password", "TNS_service_name"); then the previous error goes away but I get an error saying: "Warning: 4 is not a valid OCI8-Statement resource in c:program files usphereapachehtdocs est.php on line 12" I am not sure but I think I should e connecting to the Oracle Server using the System Data source name and the Oracle ODBC driver.
View Replies !
Using Winnt Login.. To Validify
I want to implement a user/pass script using winnt login/pass, i'm developing a mini app for my univ and i don't want users to register to use the app.. i want them to be able to login with the winnt logins/passwords that they have already. i know asp can validify winnt logins, but i don't want to use asp.
View Replies !
WinNT Redirect In Code
Is there a way to insert code, in a php file, to redirect the location of the Apache DocumentRoot to another directory? I have looked all over the place for something like this.
View Replies !
Session Cookies In WINNT Folder?
Looked around on the net for an answer to a question and havent found it yet. Im learning to use sessions for authentication. So far so good. Learned how to set variables, session cookies, delete, and all that good stuff. And after many stops and starts it all seems to work. But while checking out my WINNT folder on another matter I found several session cookie files (sess_f8fjf838 etc). I assume they are from tests when I did not log out of the sessions properly, delete the stored information, or set expiration dates properly. However are these small files supposed to go into the NT folder? Should/could I change it.. somewhere in the ini file I guess? I like w2k... the only ms os I do like... but I dont particularly like having things put into the windows folder if they dont have to be there. And... where would the cookies go in a UNIX system (which is what the host uses)?
View Replies !
Search Engine Friendly URLS On WinNT/IIS
I'm trying to make my dynamic php pages search engine friendly. I've searched these forums and read the article on Sitepoint, but all of those talk about make the URLs search engine friendly on servers running Apache. Here at the office we have a Windows NT server running IIS rather than Apache, and I can't find a way to get the URLs to be search engine friendly. Does anyone have any ideas on what I could do to make my dynamic php pages search engine friendly?
View Replies !
Upgrading PHP - Avoid Rebooting The WinNT Server
Our server is running a version of PHP that is getting a bit old (4.1.2). We'd like to take advantage of some of the functions & stability of subsequent versions. How can I upgrade easy & clean ? I'd like to avoid rebooting the WinNT server. As far as I remember, the installshield asks to reboot, right.
View Replies !
How To Use Encryption ?
I've installed Apache+PHP+MySql+SSL dan i worked. I Also see in phpinfo() configure command is included --with-mcript. When i try to use mcrypt_ecb(), it doesn't work. Anyone can help me how to use encryption ? And what is the purpose of ssl i don't know ? And if i have to install libmcrypt, should i reinstall all ?
View Replies !
Two Way Encryption
I need a simple two-way encryption method. I have a search engine and I want to hide the links so that users can't see which other engines I retrieve listings from. Then when the links are clicked, the encrypted url is passed to a script that decrypts the url and then sends the user to that url. Are there any simple methods to do this? I know crypt() and md5() sre only one-way methods.
View Replies !
2 Way Php Encryption?
Any one know of a sort of method to do this? I could write a function that would have a very simple algorthim, however anyone know of an easier way.
View Replies !
URL Encryption
I need some help with URL encryption or something similar. For example I have a URL http://www.myurl.com/search.php?iu=321xw1&di=wswe675511&v1=y&u=12qazxq but I do not want it to be displayed with the parameters rather I would like it to be displayed as http://www.myurl.com/search.php?id=eru3893Xwweu327zsdh347ueir3948 Code:
View Replies !
De-Encryption
I found these functions on php.et a long time ago and decided to use them in my login-register scripts on my site. Code: function pw_encode($password) { for ($i = 1; $i <= 8; $i++) $seed .= substr(?abcdef', rand(0,15), 1); return md5($seed.$password).$seed; } function pw_check($password,$stored_value) { $stored_seed = substr($stored_value,32,8); if (md5($stored_seed.$password).$stored_seed == $stored_value) return TRUE; else return FALSE; } now this works ok, when someone registers there p/w is encrypted and stored in the database, What i need to do now is make a password retreival function and im not sure how to. How can i make a password retreival function. A few on my site have lost thier p/w and i carnt help them as its encrypted.
View Replies !
PHP Encryption
Anyone know of a good program to encrypt php files/sites. I want to secure my mysql username and passwords so that no matter what, they cannot be acquired by a file on my server.
View Replies !
Encryption?
My friend was joking around with me and sent me an encrypted message. Thing is, I can't figure it out. Code:
View Replies !
ASP To Encryption
In that ASP site there is a encryption using "Persits.CryptoManager". Is there any solution to create an exact encrypted string in php Code:
View Replies !
MySQL's Encryption With Php
I am making a script that allows users to change their password, via their account settings, it uses mysql's encryption, and cant work out why it doesnt work. Perhaps someone could look at it for me.
View Replies !
PHP Encryption Service
I would like to make a simple page on my site that asks for two inputs: An input message box (like the one you type messages into on this forum) and a input text box (like the one you type the subject into on this forum). You enter a "key" into the text box and a "message" into the message box and then click on one of two buttons: encode or decode. So you can enter cleartext and it is turned into ciphertext, or the other way around depending on which submit button you chose. I would also like it to ask for a password before even allowing you to see anything at all on that page (which is turned into a md5 hash and then authenticated). Is there a way to make a semi-unbreakable code using this system, without installing PG or GnuPGP? If not, can someone walk me through the installation of GnuPGP on a Win2k server? I can't seem to figure it out!
View Replies !
Binary Encryption
Im using md5 to encrypt and decrypt plain text, this works fine... When i try to run the same function on a binary file, it does not decrypt correctly. Is there a way to encrypt binary files correctly, and be able to decrypt them? in the perfect situation i would like to be able to store the encrypted binary file into a mysql blob field, or at least be able to save an encrypted version of the binary file on the server. Im not lookign for a copy paste soultion (although i would take one) - but maybe some reliable documention or examples?
View Replies !
PHP On Windows With Encryption
Does anyone know whether there is a version of PHP out there for Windows that has the encryption libraries built in (Mcrypt or any other)? If not, then how can I use encrypt and decrypt functions in my app? crypt() and md5() work for encrypting, but there is no decrypt for them.
View Replies !
Encryption With PGPe (V.5)
I have read somethings about PGP, but I have a diferent problem.. I use pgpe to encrypt. When I use telnet... "/usr/local/bin/pgpe -r user -o /home/me/www/text_enc.txt" OK, all is perfect but when I write PHP code don´t works. I have tried with exec(), system(), popen(), echo... but never works... Always return a error message. And the error message is diferent that when I prococate an error by telnet. It seems a different pgpe executable!
View Replies !
Password Encryption
I have a problem with password() function. When I use the password function with insert function it works but when i use the same function with UPDATE command it does not work. Again if I remove the password function the update query works which indicates that there is no problem with query. I have given below both insert and update query . Why I can not use the PASSWORD() function with update. Code:
View Replies !
E-Mail Encryption
Probably a daft php noobie question! Is there an e-mail encryption facility buried in the depths of php - I'm looking for something like php's equivilent of AspEncrypt which I've been using with great success for sometime now. Basically I want to be able to encrpyt the message on the server, send the e-mail message out containing credit card details and the recipient be only able to open with the aid of a key.
View Replies !
Best Encryption Technique
I have a requirement of storing some .xml files on a web server. The files will contain financial information like credit card numbers, so I would like to encrypt them. The files will stay there until another program downloads them and deletes the files. My question is - which of the functions in the mcrypt library provide the best encryption for files? The files will be relatively small - between 2KB - 30KB. I would like the strongest possible encryption because some pretty good hackers may attempt to get at these files if someone figures out that there are credit card numbers out there. Another question - how should the encryption/decryption key be shared between the two programs? Is it secure enough if the .php script contains a single static key on both the ends - or is there a better way to share the key?
View Replies !
Two Way Encryption With PHP - Some Libraries For Doing This?
Up until now I have been storing passwords in the database as an sha1 hash. I like doing it this way, but a problem arises with people who forget their passwords - I cannot retrieve it for them. The simplest option would be cleartext passwords. Easy enough. But what I would prefer to do is some sort of two-way encryption, so I can encrypt the passwords, store them in the database, and then get them back. Are there any PHP libraries out there that can do this? I have thought about rolling my own, but do not want to duplicate somebody else's effort. A cursory look for this sort of thing returned only one-way (hashing) encryption techniques. This leaves me back where I was, having to reset users passwords, rather than emailing it back to them. I am not running a banking application here, so I am not too paranoid about security. But, it would be nice to have some reasonable level of encryption that is harder than rot13 to break.
View Replies !
Two Way Encryption For Passwords
Is there an alternative to crypt(), md5(), or sha1() that is two-way? Would it be a good idea to implement two-way encryption for passwords? I am creating a site in which it would be nice if the admin could login and be able to retrieve the passwords for each user.
View Replies !
Encryption Script
I'm trying to write a PHP Script to that splits a string up then uses a switch statement to change the characters into numbers. So far thats all I got. But, it doesn't work for some reason. It works and doesn't display any errors but it doesn't give the output I wanted. Code:
View Replies !
Using CURL For Encryption
I am integrating the Barclays epdq terminal for a Web site for a friend of mine. I have done this before many times. Its quite straight forward, or it was before doing it on a GoDaddy server with PHP version 4.3.11. When you are integrating the system, Barclays give you thier PHP encryption example which is then customised to suit. They use encryption with fsockopen but unfortuantely the Godaddy servers are not set to accept this command, nor will they be so i'm told. After informing the "ecommerce" support team at Barclays they then gave me a script to use with CURL substituting as the encrpyting method. This too, will not work. Using the fsockopen method, the data was simply not encrypted and thererfore the hidden form field contained nothing. Using the CURL script the server simply hangs on the page giving a few lines of HTML or a blank page completely. Barclays said to make sure CURL was supported on Godaddy and after using the command: <?php var_dump(curl_version()); ?> I got the output 'string(45) "libcurl/7.10.6 OpenSSL/0.9.7a ipv6 zlib/1.2.3"' which confirms CURL is installed on the Godaddy servers. I'm basically stuck. Barclays will not accept responsibility for a CURL solution thats works on 4.3.11 and Godaddy do not provide scripting support. I had never heard of or used CURL before so i'm clueless on how to resolve it. I have tried the CURL script on servers with a later PHP version and the encryption string displays confirming it works. Below is the page script that is supposed to encrypt the login data and send it via an encrypted hidden form field. Code:
View Replies !
IPB Password Encryption
I'm attempting to bring together several parts of my site such as the chat, forums, and news areas. I'm running Invision board v2.1.3, and so I figured I'd use this as a sort of "base". At the moment I'm trying to make my own logins on several parts of the site, but it seems that IPB has stopped using md5 for encrypting passwords. I went through the invision source files to look at their login®ister files, and it seems they made custom functions called generate_password_salt, generate_compiled_passhash, and generate_auto_log_in_key Code:
View Replies !
PHP Querystring Encryption,
I've had to quickly servers and need to turn an ASP script into PHP, i got the original script from: http://www.4guysfromrolla.com/webtech/012000-1.shtml Does anyone know of a PHP version of this? otherwise it's gonna be a few hours sifting through it and converting it line by line.
View Replies !
128bit MD5 Encryption
Can someone with good PHP knowledge evaluate this code? I'm not sure if it is even better, and how if possible could it work for single strings? Code:
View Replies !
Need A Encryption Function Other Than Md5()
i am passing an SQL string with url to a serach result display pageand retrieve it using $_GET. but i don't want to view it on the address bar as plain text. can u suggest any simple algorithm to encrypt and decrypt it. i am not able to use md5() since it does not have decryption.
View Replies !
Encryption Of Data
i have a file(.cgh) in which Encrypted code, just i want to get this data according to bit wise and store this in our database (it like stock exchanges application). like 1st char of file gives id and 2to10 char gives name,and other gives. tell me which function use and getting data.
View Replies !
Login Encryption
I am facing is the log-in system password encryption, im using a tutorial I found on the net but It is not working. The code is as follows: function doLogin() { // if we found an error save the error message in this variable $errorMessage = '' $userName = $_POST['txtUserName']; $password = $_POST['txtPassword']; // first, make sure the username & password are not empty if ($userName == '') { $errorMessage = 'You must enter your username' } else if ($password == '') { $errorMessage = 'You must enter the password' } else { // check the database and see if the username and password combo do match $sql = "SELECT user_id FROM tbl_user WHERE user_name = '$userName' AND user_password = PASSWORD('$password')" $result = dbQuery($sql); Allthough I know the username and password is the same the dialog box refuses to log me in. When i change the script to user_password = '$password'" and edited the sql with a password to match but this is obviously a plain text password and I need to add levels of security. Is their a configuration im missing in my php or mysql?
View Replies !
Database Encryption. RFC.
I recently signed up for a newsletter and received an email notifying me of my subscription. It also told me not to forget my password, as it was now encrypted in their database and they could not retrieve it for me. In general, how important is encryption of database data? How secure is MySQL without encrypting one's data? Or is encryption mostly a waste of time? Do I want to be bothered running my de-encryption algorithm anytime somebody calls me up and tells me they forgot their password. Or should I just not bother encrypting such data, so I can view it directly in the DB and give it to them?
View Replies !
MySQL With Encryption
Does anyone know easiest way to install MySQL linked with MCrypt library to implement the encryption functions AES_ENCRYPT(), AES_DECRYPT()?
View Replies !
Htaccess / Encryption?
basically what I have is a mysql db with various fields that are encrypted using AES_ENCRYPT / AES_DECRYPT, to do this you need a key, so i have assigned $key as my variable. I dont want to store any passwords in raw text in any php file or on the sql database as I dont want a nosey admin poking about reading my licence codes etc. So would it be possible to use a htaccess which would take the password entered then hash it and then use that for the key variable? Thus not having any password stored on file. Also to make sure that the htaccess password isnt sniffed, could you build SSL into this before the htaccess box pop's up?
View Replies !
Password Encryption.
I have created a user registration form. When the user registers and click on submit button, all the data is stored in MySql tables.My code is working fine up to this. My problem is the Password entered by the user is visible in the tables.(In form while entering the password it is of type (*******)..)That means in case if the users passoword is "PASSWRD" , it is exactly visible in database tables. Code:
View Replies !
Mysql Encryption
The documentation for using encyption with mysql does not seem to have any easy to follow examples. I am surprised there does not seem much out there on this. I googled mysql encryption I would think any database containing personal and sensitive information would be stored encrypted?
View Replies !
Asymmetric Encryption
I've been searching for days and I'm unable to get a good handle on this problem. I've found a treasure trove of "theoretical" articles on the subject - its seems possble - but almost no implementation examples. Here's what I'm trying to do. I'm collecting data from users and want to store it encrypted within MySQL. I want to use Asymmetric Encryption so that script uses a public key to encrypt, and a "secret" private key is used to decrypt. Obviously, the private key is NEVER stored on the server in any way. The decrypt script/function would only be accessible to the admin, and the private key must be entered manually by the admin via a SSL connection whenever they want to view any data in the database.
View Replies !
Simple Encryption
I've gotten some help with mcrypt, and I appreciate it, but it appears that the server I'm using doesn't have it installed. Is there any other way, or does anyone have a simple encryption method? A text jumble or converting letters to numbers or anything.
View Replies !
|
TRACKER
