[Opensim-dev] open sim UUID and Passwordhash
Melanie
melanie at t-data.com
Thu Oct 15 23:14:04 UTC 2009
Please don't use that code. It creates unsalted hashes, which are
not secure.
The "" should be a ranndom salt, stored in the passwordSalt field in
the DB. If that is blank, you're running a very insecure system
Melanie
Rich White wrote:
> here is the PHP code - $password_hash = md5(md5($password) . ":" ."");
>
> an md5 hash of an md5 hash
>
> =====
>
> 2009/10/15 Márcio Cardoso <marciomaiden at gmail.com>:
>> Good night,
>>
>> will be possible that someone could help me with 2 problems I have? I'm
>> trying to create a stored procedure in mysql to add users, but do not know
>> how UUID is generated. anyone have any idea how this happens? Another
>> problem is how is the encoding of the password.
>>
>> The ideal was to have access to the code that opensim uses to add avatars.
>> but I got tired of looking and nothing. I thank you for your help.
>>
>> Greetings,
>>
>> Márcio Cardoso
>>
>> _______________________________________________
>> Opensim-dev mailing list
>> Opensim-dev at lists.berlios.de
>> https://lists.berlios.de/mailman/listinfo/opensim-dev
>>
>>
> _______________________________________________
> Opensim-dev mailing list
> Opensim-dev at lists.berlios.de
> https://lists.berlios.de/mailman/listinfo/opensim-dev
More information about the Opensim-dev
mailing list