Re: Lost and Recovered.

This WebDNA talk-list message is from

1998


It keeps the original formatting.
numero = 16534
interpreted = N
texte = >On 3/11/98 7:30 PM Grant Hulbert wrote > >>If you're using 2.1 and you want to use the [protect] tag, then the >>passwords in your Users.db must be encrypted to work. If they are not >>encrypted, just access your Admin pages and WebCatalog will tell you they >>need to be encrypted and will do it for you. > >Yes I know. What I am saying is. Is the value of the encryption >determined at the time of install. So that if there is ever a time when >there would need to be a reinstallation and recovery, would I be able to >read those passwords or would it be lost forever.No, there's nothing in the encryption code that relies on anything having to do with the installation. The value of the encryption is only based on the seed value.Now, in the special case of the pass field in the users.db, that seed value is blank -- so those passwords can never be decrypted anyways. Encrpyting with blank seed values always makes the original value unrecoverable.But for other general-purpose use of the encrypt and decrypt tags, if you use exactly the same non-blank seed value, you can encrypt and decrypt at will, and your original values will be decrypted as you would expet them to be.Sincerely, Ken Grome 808-737-6499 WebDNA Solutions mailto:ken@webdna.net http://www.webdna.net Associated Messages, from the most recent to the oldest:

    
  1. Re: Lost and Recovered. (Grant Hulbert 1998)
  2. Re: Lost and Recovered. (Kenneth Grome 1998)
  3. Re: Lost and Recovered. (bob 1998)
  4. Re: Lost and Recovered. (Grant Hulbert 1998)
  5. Lost and Recovered. (bob 1998)
>On 3/11/98 7:30 PM Grant Hulbert wrote > >>If you're using 2.1 and you want to use the [protect] tag, then the >>passwords in your Users.db must be encrypted to work. If they are not >>encrypted, just access your Admin pages and WebCatalog will tell you they >>need to be encrypted and will do it for you. > >Yes I know. What I am saying is. Is the value of the encryption >determined at the time of install. So that if there is ever a time when >there would need to be a reinstallation and recovery, would I be able to >read those passwords or would it be lost forever.No, there's nothing in the encryption code that relies on anything having to do with the installation. The value of the encryption is only based on the seed value.Now, in the special case of the pass field in the users.db, that seed value is blank -- so those passwords can never be decrypted anyways. Encrpyting with blank seed values always makes the original value unrecoverable.But for other general-purpose use of the encrypt and decrypt tags, if you use exactly the same non-blank seed value, you can encrypt and decrypt at will, and your original values will be decrypted as you would expet them to be.Sincerely, Ken Grome 808-737-6499 WebDNA Solutions mailto:ken@webdna.net http://www.webdna.net Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Printing a final order (1997) WCS Newbie question (1997) redirect within the ErrorMessages.db (2003) RE: E-mailer error codes (1997) Help with database strategy (1998) What is the maximum record length? (1998) Authorize.net (2001) About the Allow 'Absolute Path' Prefix (2002) RE: too many nested [xxx] (1997) Further tests with the infamous shipCost (1997) SKU lookup (1997) Forms & Tables (1998) [WebDNA] behavior of [thisurl] in the context of 'mod_rewrite' (2012) WC2.0 Memory Requirements (1997) How far do [showif]s go? (1997) fishing for suggestions (2001) Databases (2000) Nested tags count question (1997) Grep help (2004) AppleScript: Tell application:app location? (1998)