Password security has recently been upgraded. Please enter your password again.

Started by codebirth, October 01, 2010, 06:11:02 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

codebirth

October 01, 2010, 06:11:02 AM
I'm trying to convert a forum from phpBB3 to SMF 2.0 RC3. The conversion goes OK but when I try to login I get this message

Code Select
Password security has recently been upgraded. Please enter your password again.

so I enter my password again, but I get this message

Code Select
Password incorrect

There's no way to login. I'm using the converter from phpBB3 to SMF 2.0 RC3 available here.

Any idea?  ???

Thanks in advance.

codebirth

#1
October 01, 2010, 10:09:09 AM Last Edit: October 01, 2010, 10:12:44 AM by codebirth
Hi again,

The problem is that phpBB3 converts special chars used in passwords to their respective HTML entities, so if your password is b4&2W phpBB3 converts it to b4&2W before creating the hash that is stored in the db. Since SMF 2.0 doesn't do this conversion when you input your password the hash will never be the same that the one stored in the DB if password contains special chars.

To solve it just edit Sources/LogInOut.php on your SMF 2.0 installation and do the following

SEARCH
Code Select
// Special encryption used by phpBB3.
function phpBB3_password_check($passwd, $passwd_hash)
{


REPLACE
Code Select
// Special encryption used by phpBB3.
function phpBB3_password_check($passwd, $passwd_hash)
{
    $passwd = htmlspecialchars($passwd);


Hope this helps someone.
Print
Go Up Pages1
User actions
Advertisement: