Sometime I wonder when created and changed .htaccess in my box doesn’t have any effect at all.
The only realiazed ..
Because there is a line in /etc/httpd/conf/httpd.conf
AllowOverride None
.. commented out that line..
or change is to
AllowOverride All
then only .htaccess setting will work.
this also apply for wordpress redirection part for
permanent link or some sort of other auth part defined in .htaccess..
Basically affect everything that defined in .htaccess.
Recommended to have different directory section setting for each folder instead of
the whole Document root folder /
Remember to restart the webserver (httpd process) whenever changing /etc/httpd/conf/httpd.conf config file.. 😎
Hi namran, you should not use MD5 hashing as “encryption” for passwords. Why? I wrote in my blog how easy it is to crack MD5 passwords using local software (see http://www.stottmeister.com/blog/2009/06/29/how-to-crack-md5-passwords-with-john-the-ripper-a-live-example-exploiting-typo3/ ) and using online services (see http://www.stottmeister.com/blog/2009/04/14/how-to-crack-md5-passwords/ ). These articles tell you how to crack MD5 hashes quite easily (for educational purposes only). So please don’t use MD5 as password “encryption”.
Even SHA-1 is considered unsafe nowadays. Better use a new hashing mechanism such as SHA-256 or something similiar.
Best regards
Stotti
Hi Stotti,
Thanks for your comment.
apparently to change that to use SHA-256 ..
just need to change the line ..
md5()
to use sha256 by …
sha256()
and have to make sure the password field length in SQL table is long enough to store the hash..
.. and you’ll be not able to add new user via phpMyAdmin interface as no built in sha256 interface there and have to calculate your password yourself..
correct ?
Be sure to salt your hashes if you do use the MD5 algorithm. Simple reverse lookup attacks could crack your hashes otherwise. There are sites such as http://ww.netmd5crack.com and http://gdataonline.com that specialize in this sort of attack.
Brian
Hash cracker is a web-service that allows you to encrypt your passwords
or crack your hashed passwords with MD5, SHA1 or NTLM algorithms.
You can also encode or decode texts with Base64 system.
http://www.hash-cracker.com
Video tutorial:
http://www.youtube.com/watch?v=JVxdQPdGXec
Mueller Sports Medicine Turnover http://www.mishymashy.com/ – effexor sale The medication usually needs to be tapered slowly to avoid the withdrawal symptoms that can be very uncomfortable. cheapest effexor
Sweet blog! I found it while surfing around on Yahoo News. Do you have any tips on how to get listed in Yahoo News? I’ve been trying for a while but I never seem to get there! Many thanks