Do we reply in new threads now?
Why didn't I get the memo!
Do we reply in new threads now?
Why didn't I get the memo!
Well I guess that's right, but am I (the only person) really going to record user information? If this forum was run on my own personal server that I have at home, I would actually take that route. But this forum is run on a host that I have purchased and they do not condone in that kind of activity. They can see everything I am doing and if they catch me recording personal information like that, I will be screwed. I'm sure somewhere in the registration process there is also a reference to this entire scenario.
If it makes you feel safer, I can add what you are asking into the forum auth.
(you need an account to see links)
(you need an account to see links)(you need an account to see links)
------------------------
[02/24/2013] Stealth CORE is made into the first standalone Neopets auto-player.
------------------------
archon(06-15-2013),Duck4Cover(06-15-2013),M (06-16-2013),oj o simmie(06-16-2013)
I'm not asking for anything, I'm simply offering advice. It would be the safer method, and isn't that what you want from your members?
Anyways, VB.net is also not as secure as you want it to be, because anything in vb.net can be easily hex edited.
---------- Post added at 06:07 PM ---------- Previous post was at 06:07 PM ----------
Didn't realize I said something offensive?
OK now you sound like you're talking about something else.
Are you talking about my server-sided auth? Or the code inside of my program?
My auth actually hashes the password, if you did not see that when you used my program. When accessing the auth PHP file, though, the password is sent decrypted only because it is between my server and the user authenticating.
If you're talking about my server-sided auth, like I said there is no need for me to modify it to accept a hashed password as I do not record any information from members upon authenticating. Hell if I wanted to I would just modify the login.php script from vBulletin to take anyone's password and I would be sued by everyone.
So yeah, rest assured to all members, you're information is safe.
PS: I don't code in VB.
(you need an account to see links)
(you need an account to see links)(you need an account to see links)
------------------------
[02/24/2013] Stealth CORE is made into the first standalone Neopets auto-player.
------------------------
esperanto (06-15-2013),I_royalty_I (06-15-2013)
Well you wouldn't be sued until anyone found out lol. BUT I think it would be best to have both forum.php and auth.php passwords be md5'd just to stay secure and safe and remove doubts from anyone.
But what I meant by the VB.net, its that even if you have your auth.php in a label or textbox, it can easily be hex edited and cracked since vb.net parses the urls before compiling (something like that) but check for yourself. If you still don't get what I mean, hmu on skype or something
---------- Post added at 06:22 PM ---------- Previous post was at 06:20 PM ----------
Then it might just be .net
I don't know about anyone else here, but why does any of this even matter?
(you need an account to see links)
(you need an account to see links)(you need an account to see links)
------------------------
[02/24/2013] Stealth CORE is made into the first standalone Neopets auto-player.
------------------------