|
Bart
scarfboy at gmail.com
Fri May 23 11:14:31 EDT 2008
2008/5/23 <Dominique.Holzwarth at ch.delarue.com>: > Hi all > > Does anyone have an idea how the function "get_basic_auth_pw()" manages to > decrypt the user password stored as MD5 inside the auth-file into its clear > text version? > I'm asking cause I maybe have to convert the MD5 passwords into the clear > texts passwords myself and wondering how this is possible as normaly those > passwords shouldn't be decryptable (i think) and authentication should be > done by matching 2 MD5… =) You may be thinking of Digest HTTP authentication. Basic HTTP authentication sends passwords in (base64'd, IIRC) plain text. Regards, --Bart
|