Go Back   TechArena Community > Software > Software Development
Become a Member!
Forgot your username/password?
Tags Active Topics RSS Search Mark Forums Read

Reply
 
Thread Tools Search this Thread
  #1  
Old 10-06-2009
Member
 
Join Date: May 2008
Posts: 248
Hashed Passwords cannot be Decoded

I have multiple user accounts, i have maintained different username password for each of my accounts, i have done this to maintain the security for the accounts but this has become the headache to me as sometimes it becomes difficult to remember the password, and for that reason i have decided to decode my password from the encrypted password, does it possible to do with my accounts,please help.
Reply With Quote
  #2  
Old 10-06-2009
Member
 
Join Date: Mar 2008
Posts: 227
Re: Hashed Passwords cannot be Decoded

Theory of hashing is a one way functions. This means that if you have computed a hash of a password, you cannot get back the password in plain text by the hash.Converting a password to var_binary is not hashing the password at all. Just convert it back to character and see what you get.

Code:
CREATE LOGIN [TestUser] WITH PASSWORD = 0x01000784DC016AECF087428746D6FD898C39B834CBBD3E82B41A HASHED, SID = 0xC5F52518CC4018458154FBFF79831CFC, DEFAULT_DATABASE = [TestDB], CHECK_POLICY = OFF, CHECK_EXPIRATION = OFF
Reply With Quote
  #3  
Old 10-06-2009
Member
 
Join Date: Apr 2008
Posts: 193
Re: Hashed Passwords cannot be Decoded

If your hashing passwords then you cannot really do much about changing them. Since a hash() is a one-way encryption, and therefore the resultant string cannot be decoded back to its original value, your user accounts are provided with more safety than a simple encrypt() offers.

Code:
<cfcomponent displayname="UserTransferObjectDecorator"
                    extends="transfer.com.TransferDecorator"
                    output="false">
There is also an undocumented function that you could use,I also suggest you dont email passwords to anyone, hashed or not. Since a hash() is a one-way encryption, and therefore the resultant string cannot be decoded back to its original value, your user accounts are provided with more safety than a simple encrypt() offers. The thing to keep in mind is that the function is undocumented and there are no guarantees made about its behavior or its future availability.
Reply With Quote
  #4  
Old 10-06-2009
Member
 
Join Date: Mar 2008
Posts: 232
Re: Hashed Passwords cannot be Decoded

  1. In the output script, the logins are created by using the encrypted password. This is because of the HASHED argument in the CREATE LOGIN statement. This argument specifies that the password that is entered after the PASSWORD argument is already hashed.
  2. By default, only a member of the sysadmin fixed server role can run a SELECT statement from the sys.server_principals view.

For more info check here
Reply With Quote
Reply

  TechArena Community > Software > Software Development
Tags: , ,



Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads for: "Hashed Passwords cannot be Decoded"
Thread Thread Starter Forum Replies Last Post
need 2 files decoded different kind of encoding bekk1n Software Development 1 06-10-2011 02:32 PM
How to secure your Passwords Santy Tips & Tweaks 2 14-07-2010 03:00 AM
md5 passwords issue VIP Software Development 3 24-09-2009 02:03 PM
Need to keep track of all my passwords Ananias Technology & Internet 3 02-03-2009 10:20 AM
Bios Passwords Maddox Networking & Security 2 25-10-2008 02:07 PM


All times are GMT +5.5. The time now is 07:21 AM.