• There is NO official Otland's Discord server and NO official Otland's server list. The Otland's Staff does not manage any Discord server or server list. Moderators or administrator of any Discord server or server lists have NO connection to the Otland's Staff. Do not get scammed!

Player Password?

Cornex

Cornex

Web Developer
Staff member
Global Moderator
Joined
Jun 15, 2008
Messages
3,444
Solutions
6
Reaction score
1,170
Location
Sweden
Hey, fast question. How to look up someone players password in phpmyadmin? :O Repp++
 
Sort by date Sort by votes
If the password looks something like this: a59ffefce5586aca25febf48a9f406f0eb330ba9
Then it is encrypted in SHA1, which means there's no way of getting the password.

You will have to use the lost account (recovery key) to reset the password.
 
Upvote 0 Downvote
not understand xd example better please
sha1 made by don't know you try use decrypt for sha1 or use lost acc for back password, why sha1 say 0ioaskasma9as , etc in passwords..
 
Upvote 0 Downvote
Rambo said:
Cronox is the one of the most contributors that actually help people instead of flaming them.
Click to expand...

That was no flame, I was pointing out Cronox attempt to explain Encryption in which he did it in a whole sentence. And we are talking about SHA1 Encryption, Cronox did a marvelous job by Encrypting his sentence, thus single-handedly teaching about it, "We don't need to know what actually was written." it applies to SHA1 and Cronox's sentence. We simply don't need to know.
 
Upvote 0 Downvote
@Santi
ahh ?? what is funny O.o!! not understand u.u!!

@Rambo
Thanks <3!!

@shimaru
not understand i am from mexico my english not is good xD!

MSG FOR ALL..
I once tried to because a player was foolish by saying that the password for your char and had not done work the lost account then grab a web that changed the password of sha1 by the real password and worked for me

My Server searz-online.com have 700+ on and need listen to a lot people and this method worked for me i know that many do not or try to say that it is not possible but good is possible and worked for me.
 
Upvote 0 Downvote
godiskungen said:
Hey, fast question. How to look up someone players password in phpmyadmin? :O Repp++
Click to expand...
If they are encrypted in SHA1 do not bother, they cannot be decrypted and all you will see is a bunch of random Numbers and Letters, if you setup your server to save them in plaintext then you can look them up, but I promise you that I will badmouth you till you can never host another server in your life. Plaintext is a very bad security practice, and should warren a ban from any OT Network, as a Hoster or server owner you do not have any reason to look at players password.

Can someone confirm if plaintext option has been removed?
 
Upvote 0 Downvote
If your server is using a plain encryption, then you are able to look up the password under the tab accounts and there you'll see all players password.

And as they said above, if it's a Sha1 encryption then it's impossible to know the password without the RSA key, which the player have.

However, you can change the password to something you like here. Write in for example "a" and it will generate this code "86f7e437faa5a7fce15d1ddcb9eaeaea377667b8" and now copy paste that into the password field in phpmyadmin, and then the password is "a" you can not just type in "a" in sha1 encryption, then the client will give you an error, which tells you that you have wrong password.
 
Upvote 0 Downvote
You can't decrypt password with that, or possibly a few passwords. They need to have your password in their database to be able to decrypt it, otherwise it will just return an error. Since you need to know they secret key, to solve for the private key (the sha1 encryption).
 
Upvote 0 Downvote
Upvote 0 Downvote
Plus that the Sha1 can have infinite solutions to one and same word/letter/sentence. So it's a minimal chance that you can encrypt passwords with that link.
 
Upvote 0 Downvote
Back
Top