I have a password problem for the admin account. I cannot login anymore. It started after getting a new ip address. After reverting to the old ip address, the problem persist.
My first question is, is it posible to set the password to a unhased text string ? I really don't need all this security measures, which on the end only protect the system agains myself. If the password can be set with a root user on the system itself, I think for my purpose it is secure enough.
Show password has not changed.
1: Finding salt
Code: Select all
# Sqlite3 pinnbook
sqlite> select * from faqconfig ;
...
...
...
security.salt|ea83136405f42cf966a08ddcee3c4caa
Code: Select all
<?php
$user = "admin";
$password = "password";
$salt = "ea83136405f42cf966a08ddcee3c4caa";
$pass = hash('sha256', $password . $salt . $user);
echo $pass;
echo “\n”
3: show password hash
Code: Select all
# php ./Hash_password.php
c4ff20305b1913920c64a28bee75348200bd879087b1b81cb38bbba570ff754a
#
Code: Select all
# sqlite3 pinnbook
sqlite> select * from faquserlogin ;
admin|c4ff20305b1913920c64a28bee75348200bd879087b1b81cb38bbba570ff754a
anonymous|2cfa63574bc8f73786a6bf7db1cefc952a77ef61354e5dbb19ec7a628b8772a8
nimda|160f2abec9de0bf7316e806d5a5438c7bab463283ec08d6eeea2f9a5e9c1317d
sqlite>
I cannot login.
What I did to try to reset the password:
1: Finding salt
Code: Select all
# Sqlite 3 pinnbook
sqlite> select * from faqconfig ;
...
...
...
security.salt|ea83136405f42cf966a08ddcee3c4caa
Code: Select all
<?php
$user = "admin";
$password = "test";
$salt = "ea83136405f42cf966a08ddcee3c4caa";
$pass = hash('sha256', $password . $salt . $user);
echo $pass;
echo “\n” ;
Code: Select all
# php ./Hash_test.php
0865cdd85e83921094b046deab85f05ab949512f04e96e8e2c5dba09aab595fb
#
Code: Select all
# Sqlite3 pinnbook
sqlite> update faquserlogin set pass = "0865cdd85e83921094b046deab85f05ab949512f04e96e8e2c5dba09aab595fb" where login = 'admin' ;
#
No errors in message file !