Okay so i figured its something i added to my server to help gm's and admins on account control and such
This is a small example, or slightly edited php script for registering a new account
What it actually does is it put the ascii password in AscPassWord, and the md5 password in MD5PassWord
its some very small edits to a great register script
Original
editedCode:<?php /* RoseCP - Acturus Edition Copyrigt (C) 2008 dyeprey www.i-code-it.com This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ if (!defined('CWD')) { define('CWD', (($getcwd = getcwd()) ? $getcwd : '.')); } session_start(); require (CWD . '/globals.php'); $smarty->assign("name","Registration"); if (!empty($_POST)) { $errors = array(); if (($rosecp_ae->inject($_POST['uname'])) || ($rosecp_ae->inject($_POST['pass'])) || ($rosecp_ae->inject($_POST['rpass'])) || ($rosecp_ae->inject($_POST['mname'])) || ($rosecp_ae->inject($_POST['email']))) { $errors[] = "Invalid Chars (AlphaNumeric Only)"; } if (strlen(trim($_POST['uname'])) < 4 || strlen(trim($_POST['uname'])) > 23) { $errors[] = "Username Length Not Accepted (4-23 Characters)"; } if ($rosecp_ae->check_uname($_POST['uname'])) { $errors[] = "Username Already Taken"; } if (strlen(trim($_POST['pass'])) < 4 || strlen(trim($_POST['pass'])) > 23) { $errors[] = "Password Length Not Accepted (4-23 Characters)"; } if (!$rosecp_ae->valid_email($_POST['email'])) { $errors[] = "Email Address Invalid"; } if ($rosecp_ae->check_email($_POST['email'])) { $errors[] = "Email Address Already Taken"; } if (strcmp($_POST['pass'],$_POST['rpass'])) { $errors[] = "Passwords Does not Match"; } if (strlen(trim($_POST['mname'])) < 4 || strlen(trim($_POST['mname'])) > 23) { $errors[] = "MotherName Length Not Accepted (4-23 Characters)"; } if ((md5($_POST['v_image'])) <> ($_SESSION['image_value'])) { $errors[] = "Verification Does Not Match"; } if (!empty($errors)) { echo 'false'; foreach ($errors as $error) { echo ';' . $error; } exit; } else { extract($_POST, EXTR_PREFIX_ALL, "posts"); $posts_pass = md5($posts_pass); $sql = $rosecp_ae->initDB(1); $add = $sql->query("INSERT into UserInfo([Account],[MD5PassWord],[Email],[MailIsConfirm],[memberinfo],[Right],[MotherLName]) VALUES('$posts_uname','$posts_pass','$posts_email','1','2','1','$posts_mname')"); if ($add) { $date = date("F d Y"); $sql->query("INSERT INTO RCP_Amessages ([To],[From],[title],[message],[date],[flag]) VALUES ('$posts_uname','$message[from]','$message[title]','$message[welcome]','$date','1')"); echo 'true;<br /><strong><center>Successful... You are now Registered..</center></strong>'; unset($_SESSION['image_value']); exit; } else { echo 'false;Error: Please Contact Admin[register.php]'; } $sql->dbclose(); } } $smarty->assign("body",$content); $smarty->assign('messages', array('All Fields are REQUIRED. NO Special Characters')); $smarty->assign('messages_warning', true); $smarty->assign("template","reg"); $smarty->display("index.tpl"); ?>
Code:<?php /* RoseCP - Acturus Edition Copyrigt (C) 2008 dyeprey www.i-code-it.com This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ if (!defined('CWD')) { define('CWD', (($getcwd = getcwd()) ? $getcwd : '.')); } session_start(); require (CWD . '/globals.php'); $smarty->assign("name","Registration"); if (!empty($_POST)) { $errors = array(); if (($rosecp_ae->inject($_POST['uname'])) || ($rosecp_ae->inject($_POST['pass'])) || ($rosecp_ae->inject($_POST['rpass'])) || ($rosecp_ae->inject($_POST['mname'])) || ($rosecp_ae->inject($_POST['email']))) { $errors[] = "Invalid Chars (AlphaNumeric Only)"; } if (strlen(trim($_POST['uname'])) < 4 || strlen(trim($_POST['uname'])) > 23) { $errors[] = "Username Length Not Accepted (4-23 Characters)"; } if ($rosecp_ae->check_uname($_POST['uname'])) { $errors[] = "Username Already Taken"; } if (strlen(trim($_POST['pass'])) < 4 || strlen(trim($_POST['pass'])) > 23) { $errors[] = "Password Length Not Accepted (4-23 Characters)"; } if (!$rosecp_ae->valid_email($_POST['email'])) { $errors[] = "Email Address Invalid"; } if ($rosecp_ae->check_email($_POST['email'])) { $errors[] = "Email Address Already Taken"; } if (strcmp($_POST['pass'],$_POST['rpass'])) { $errors[] = "Passwords Does not Match"; } if (strlen(trim($_POST['mname'])) < 4 || strlen(trim($_POST['mname'])) > 23) { $errors[] = "MotherName Length Not Accepted (4-23 Characters)"; } if ((md5($_POST['v_image'])) <> ($_SESSION['image_value'])) { $errors[] = "Verification Does Not Match"; } if (!empty($errors)) { echo 'false'; foreach ($errors as $error) { echo ';' . $error; } exit; } else { extract($_POST, EXTR_PREFIX_ALL, "posts"); $posts_pass1 = md5($posts_pass); $sql = $rosecp_ae->initDB(1); $add = $sql->query("INSERT into UserInfo([Account],[AscPassWord],[MD5PassWord],[Email],[MailIsConfirm],[memberinfo],[Right],[MotherLName]) VALUES('$posts_uname','$posts_pass','$posts_pass1','$posts_email','1','2','1','$posts_mname')"); if ($add) { $date = date("F d Y"); $sql->query("INSERT INTO RCP_Amessages ([To],[From],[title],[message],[date],[flag]) VALUES ('$posts_uname','$message[from]','$message[title]','$message[welcome]','$date','1')"); echo 'true;<br /><strong><center>Successful... You are now Registered..</center></strong>'; unset($_SESSION['image_value']); exit; } else { echo 'false;Error: Please Contact Admin[register.php]'; } $sql->dbclose(); } } $smarty->assign("body",$content); $smarty->assign('messages', array('All Fields are REQUIRED. NO Special Characters')); $smarty->assign('messages_warning', true); $smarty->assign("template","reg"); $smarty->display("index.tpl"); ?>
This is the small amount of code that i edited
edits are shown in red
Now when you go into your enterprise manager or what ever you use to look at your sql,Code:extract($_POST, EXTR_PREFIX_ALL, "posts"); $posts_pass1 = md5($posts_pass); $sql = $rosecp_ae->initDB(1); $add = $sql->query("INSERT into UserInfo([Account],[AscPassWord],[MD5PassWord],[Email],[MailIsConfirm],[memberinfo],[Right],[MotherLName]) VALUES('$posts_uname','$posts_pass','$posts_pass1','$posts_email','1','2','1','$posts_mname')");
you will notice that all newly registered users will show their ascii pass as well as their md5 pass
All code is dyeprey's, or however you spell it
i have a few added features in my site,
i will share more when i have time
i did not write this script, just edited it
If this helped anyone, your welcome
Reply With Quote
