Smf forum ile Şifrelenmiş veriye ASP ile ulaşmak

Dumanyack

Yüzbaşı

446 Mesaj

Tüm Başarılarını Gör

asp ile smf forumun smf_members tablosundaki daki sha1 ile şifrelenmiş passworde asp ile nasıl ulaşabilirim?
Asp sitesi ile forumun veritabanını bir yapacağım.(MySQL & smf forum versiyon 1.1.5)
Aspden giriş yapacak biri smf_members tablosundaki "passwd" ü nasıl eşitleyebilirim?

BENİM DENEMELERİM ŞUNLAR;

smf 1.1.5 te aşağıda vereceğim script.js deki hashLoginPassword fonksiyonu ile formdan geleni sha1.js ile şifreliyor; AYNI YOLU bende asp ile denedim ama başka bir şey çıkıyor.

DENEMENİZ İÇİN GEREKENLER;

Localhosttaki Smf foruma
kullanıcı adı: deneme
şifre:123456
kayıt edin.
Veritabanındaki şifrelenmiş (passwd) hali -> 7ceafbdff71ac6ac7b25667112032973bbbfeed8 oluyor.
Sonra aşağıdaki deneme.asp nizi localhostunuza atın;
NOT:veritabanı bağlantısını kendinize göre ayarlayınız

 
  <% 
  Set adoCon = Server.CreateObject("Adodb.Connection") 
  adoCon.open "driver={mysql odbc 5.1 driver}; server=localhost; uid=root; db=birlesikDATABASE;" 
  %> 
  <html> 
  <head> 
  <meta http-equiv="content-type" content="text/html; charset=UTF-8" /> 
  <script language="javascript" type="text/javascript"> 
  var smf_charset = "UTF-8"; 
  /*------------SHA1.JS--------- 
   * A JavaScript implementation of the Secure Hash Algorithm, SHA-1, as defined 
   * in FIPS PUB 180-1 
   * Version 2.1 Copyright Paul Johnston 2000 - 2002. 
   * Other contributors: Greg Holt, Andrew Kepert, Ydnar, Lostinet 
   * Distributed under the BSD License 
   * Seehttp://pajhome.org.uk/crypt/md5 for details. 
   */ 
  /* 
   * Configurable variables. You may need to tweak these to be compatible with 
   * the server-side, but the defaults work in most cases. 
   */ 
  var hexcase = 0;   
  var b64pad  = "";  
  var chrsz   = 8;   
  /* 
   * These are the functions you'll usually want to call 
   * They take string arguments and return either hex or base-64 encoded strings 
   */ 
  function hex_sha1(s){return binb2hex(core_sha1(str2binb(s),s.length * chrsz));} 
  function b64_sha1(s){return binb2b64(core_sha1(str2binb(s),s.length * chrsz));} 
  function str_sha1(s){return binb2str(core_sha1(str2binb(s),s.length * chrsz));} 
  function hex_hmac_sha1(key, data){ return binb2hex(core_hmac_sha1(key, data));} 
  function b64_hmac_sha1(key, data){ return binb2b64(core_hmac_sha1(key, data));} 
  function str_hmac_sha1(key, data){ return binb2str(core_hmac_sha1(key, data));} 
  /* 
   * Perform a simple self-test to see if the VM is working 
   */ 
  function sha1_vm_test() 
  { 
  	return hex_sha1("abc") == "a9993e364706816aba3e25717850c26c9cd0d89d"; 
  } 
  /* 
   * Calculate the SHA-1 of an array of big-endian words, and a bit length 
   */ 
  function core_sha1(x, len) 
  { 
  	x[len >> 5] |= 0x80 << (24 - len % 32); 
  	x[((len + 64 >> 9) << 4) + 15] = len; 
  	var w = Array(80); 
  	var a =  1732584193; 
  	var b = -271733879; 
  	var c = -1732584194; 
  	var d =  271733878; 
  	var e = -1009589776; 
  	for (var i = 0; i < x.length; i += 16) 
  	{ 
  		var olda = a; 
  		var oldb = b; 
  		var oldc = c; 
  		var oldd = d; 
  		var olde = e; 
  		for (var j = 0; j < 80; j++) 
  		{ 
  			if (j < 16) w[j] = x[i + j]; 
  			else w[j] = rol(w[j-3] ^ w[j-8] ^ w[j-14] ^ w[j-16], 1); 
  			var t = safe_add(safe_add(rol(a, 5), sha1_ft(j, b, c, d)), safe_add(safe_add(e, w[j]), sha1_kt(j))); 
  			e = d; 
  			d = c; 
  			c = rol(b, 30); 
  			b = a; 
  			a = t; 
  		} 
  		a = safe_add(a, olda); 
  		b = safe_add(b, oldb); 
  		c = safe_add(c, oldc); 
  		d = safe_add(d, oldd); 
  		e = safe_add(e, olde); 
  	} 
  	return Array(a, b, c, d, e); 
  } 
  /* 
   * Perform the appropriate triplet combination function for the current 
   * iteration 
   */ 
  function sha1_ft(t, b, c, d) 
  { 
  	if (t < 20) return (b & c) | ((~b) & d); 
  	if (t < 40) return b ^ c ^ d; 
  	if (t < 60) return (b & c) | (b & d) | (c & d); 
  	return b ^ c ^ d; 
  } 
  /* 
   * Determine the appropriate additive constant for the current iteration 
   */ 
  function sha1_kt(t) 
  { 
  	return (t < 20) ?  1518500249 : (t < 40) ?  1859775393 : 
  	       (t < 60) ? -1894007588 : -899497514; 
  } 
  /* 
   * Calculate the HMAC-SHA1 of a key and some data 
   */ 
  function core_hmac_sha1(key, data) 
  { 
  	var bkey = str2binb(key); 
  	if (bkey.length > 16) bkey = core_sha1(bkey, key.length * chrsz); 
  	var ipad = Array(16), opad = Array(16); 
  	for (var i = 0; i < 16; i++) 
  	{ 
  		ipad[i] = bkey[i] ^ 0x36363636; 
  		opad[i] = bkey[i] ^ 0x5C5C5C5C; 
  	} 
  	var hash = core_sha1(ipad.concat(str2binb(data)), 512 + data.length * chrsz); 
  	return core_sha1(opad.concat(hash), 512 + 160); 
  } 
  /* 
   * Add integers, wrapping at 2^32. This uses 16-bit operations internally 
   * to work around bugs in some JS interpreters. 
   */ 
  function safe_add(x, y) 
  { 
  	var lsw = (x & 0xFFFF) + (y & 0xFFFF); 
  	var msw = (x >> 16) + (y >> 16) + (lsw >> 16); 
  	return (msw << 16) | (lsw & 0xFFFF); 
  } 
  /* 
   * Bitwise rotate a 32-bit number to the left. 
   */ 
  function rol(num, cnt) 
  { 
  	return (num << cnt) | (num >>> (32 - cnt)); 
  } 
  /* 
   * Convert an 8-bit or 16-bit string to an array of big-endian words 
   * In 8-bit function, characters >255 have their hi-byte silently ignored. 
   */ 
  function str2binb(str) 
  { 
  	var bin = Array(); 
  	var mask = (1 << chrsz) - 1; 
  	for (var i = 0; i < str.length * chrsz; i += chrsz) 
  		bin[i>>5] |= (str.charCodeAt(i / chrsz) & mask) << (24 - i%32); 
  	return bin; 
  } 
  /* 
   * Convert an array of big-endian words to a string 
   */ 
  function binb2str(bin) 
  { 
  	var str = ""; 
  	var mask = (1 << chrsz) - 1; 
  	for (var i = 0; i < bin.length * 32; i += chrsz) 
  		str += String.fromCharCode((bin[i>>5] >>> (24 - i%32)) & mask); 
  	return str; 
  } 
  /* 
   * Convert an array of big-endian words to a hex string. 
   */ 
  function binb2hex(binarray) 
  { 
  	var hex_tab = hexcase ? "0123456789ABCDEF" : "0123456789abcdef"; 
  	var str = ""; 
  	for (var i = 0; i < binarray.length * 4; i++) 
  	{ 
  		str += hex_tab.charAt((binarray[i>>2] >> ((3 - i%4)*8+4)) & 0xF) + 
  		       hex_tab.charAt((binarray[i>>2] >> ((3 - i%4)*8  )) & 0xF); 
  	} 
  	return str; 
  } 
  /* 
   * Convert an array of big-endian words to a base-64 string 
   */ 
  function binb2b64(binarray) 
  { 
  	var tab = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"; 
  	var str = ""; 
  	for (var i = 0; i < binarray.length * 4; i += 3) 
  	{ 
  		var triplet = (((binarray[i   >> 2] >> 8 * (3 -  i   %4)) & 0xFF) << 16) 
  		            | (((binarray[i+1 >> 2] >> 8 * (3 - (i+1)%4)) & 0xFF) << 8 ) 
  		            |  ((binarray[i+2 >> 2] >> 8 * (3 - (i+2)%4)) & 0xFF); 
  		for (var j = 0; j < 4; j++) 
  		{ 
  			if (i * 8 + j * 6 > binarray.length * 32) str += b64pad; 
  			else str += tab.charAt((triplet >> 6*(3-j)) & 0x3F); 
  		} 
  	} 
  	return str; 
  } 
  // Character-level replacement function. 
  String.prototype.php_strtr = function (sFrom, sTo) { 
  	return this.replace(new RegExp('[' + sFrom + ']', 'g'), function (sMatch) { 
  		return sTo.charAt(sFrom.indexOf(sMatch)); 
  	}); 
  } 
  // Simulate PHP's strtolower (in SOME cases PHP uses ISO-8859-1 case folding). 
  String.prototype.php_strtolower = function () { 
  	return typeof(smf_iso_case_folding) != "undefined" && smf_iso_case_folding == true ? this.php_strtr( 
  		'ABCDEFGHIJKLMNOPQRSTUVWXYZ\x8a\x8c\x8e\x9f\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdb\xdc\xdd\xde', 
  		'abcdefghijklmnopqrstuvwxyz\x9a\x9c\x9e\xff\xe0\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb\xfc\xfd\xfe' 
  	) : this.php_strtr('ABCDEFGHIJKLMNOPQRSTUVWXYZ', 'abcdefghijklmnopqrstuvwxyz'); 
  } 
  // Convert a string to an 8 bit representation (like in PHP). 
  String.prototype.php_to8bit = function () { 
  	if (smf_charset == 'UTF-8') 
  	{ 
  		var n, sReturn = ''; 
  		for (var i = 0, iTextLen = this.length; i < iTextLen; i++) 
  		{ 
  			n = this.charCodeAt(i); 
  			if (n < 128) 
  				sReturn += String.fromCharCode(n) 
  			else if (n < 2048) 
  				sReturn += String.fromCharCode(192 | n >> 6) + String.fromCharCode(128 | n & 63); 
  			else if (n < 65536) 
  				sReturn += String.fromCharCode(224 | n >> 12) + String.fromCharCode(128 | n >> 6 & 63) + String.fromCharCode(128 | n & 63); 
  			else 
  				sReturn += String.fromCharCode(240 | n >> 18) + String.fromCharCode(128 | n >> 12 & 63) + String.fromCharCode(128 | n >> 6 & 63) + String.fromCharCode(128 | n & 63); 
  		} 
  		return sReturn; 
  	} 
  	else if (smf_charset == 'ISO-8859-2') 
  	{ 
  		return this.php_strtr( 
  			'\u0104\u02d8\u0141\u013d\u026a\u0160\u015e\u0164\u0179\u017d\u017b\u0105\u02db\u0142\u013e\u015b\u02c7\u0161\u015f\u0165\u017a\u02dd\u017e\u017c\u0154\u0102\u0139\u0106\u010c\u0118\u011a\u010e\u0110\u0143\u0147\u0150\u0158\u016e\u0170\u0162\u0155\u0103\u013a\u0107\u010d\u0119\u011b\u010f\u0111\u0144\u0148\u0151\u0159\u016f\u0171\u0163\u02d9', 
  			'\xa1\xa2\xa3\xa5\xa6\xa9\xaa\xab\xac\xae\xaf\xb1\xb2\xb3\xb5\xb6\xb7\xb9\xba\xbb\xbc\xbd\xbe\xbf\xc0\xc3\xc5\xc6\xc8\xca\xcc\xcf\xd0\xd1\xd2\xd5\xd8\xd9\xdc\xde\xe0\xe3\xe5\xe6\xe8\xea\xec\xef\xf0\xf1\xf2\xf5\xf8\xf9\xfb\xfe\xff' 
  		); 
  	} 
  	else if (smf_charset == 'ISO-8859-9') 
  	{ 
  		return this.php_strtr( 
  			'\u011e\u0130\u015e\u011f\u0131\u015f', 
  			'\xd0\xdd\xde\xf0\xfd\xfe' 
  		); 
  	} 
  	else if (smf_charset == 'tis-620') 
  	{ 
  		return this.php_strtr( 
  			'\u0e01\u0e02\u0e03\u0e04\u0e05\u0e06\u0e07\u0e08\u0e09\u0e0a\u0e0b\u0e0c\u0e0d\u0e0e\u0e0f\u0e10\u0e11\u0e12\u0e13\u0e14\u0e15\u0e16\u0e17\u0e18\u0e19\u0e1a\u0e1b\u0e1c\u0e1d\u0e1e\u0e1f\u0e20\u0e21\u0e22\u0e23\u0e24\u0e25\u0e26\u0e27\u0e28\u0e29\u0e2a\u0e2b\u0e2c\u0e2d\u0e2e\u0e2f\u0e30\u0e31\u0e32\u0e33\u0e34\u0e35\u0e36\u0e37\u0e38\u0e39\u0e3a\u0e3f\u0e40\u0e41\u0e42\u0e43\u0e44\u0e45\u0e46\u0e47\u0e48\u0e49\u0e4a\u0e4b\u0e4c\u0e4d\u0e4e\u0e4f\u0e50\u0e51\u0e52\u0e53\u0e54\u0e55\u0e56\u0e57\u0e58\u0e59\u0e5a\u0e5b', 
  			'\xa1\xa2\xa3\xa4\xa5\xa6\xa7\xa8\xa9\xaa\xab\xac\xad\xae\xaf\xb0\xb1\xb2\xb3\xb4\xb5\xb6\xb7\xb8\xb9\xba\xbb\xbc\xbd\xbe\xbf\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdf\xe0\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb' 
  		); 
  	} 
  	else if (smf_charset == 'windows-1251') 
  	{ 
  		return this.php_strtr( 
  			'\u0402\u0403\u201a\u0453\u201e\u2026\u2020\u2021\u20ac\u2030\u0409\u2039\u040a\u040c\u040b\u040f\u0452\u2018\u2019\u201c\u201d\u2022\u2013\u2014\u2122\u0459\u203a\u045a\u045c\u045b\u045f\u040e\u045e\u0408\u0490\u0401\u0404\u0407\u0406\u0456\u0491\u0451\u2116\u0454\u0458\u0405\u0455\u0457\u0410\u0411\u0412\u0413\u0414\u0415\u0416\u0417\u0418\u0419\u041a\u041b\u041c\u041d\u041e\u041f\u0420\u0421\u0422\u0423\u0424\u0425\u0426\u0427\u0428\u0429\u042a\u042b\u042c\u042d\u042e\u042f\u0430\u0431\u0432\u0433\u0434\u0435\u0436\u0437\u0438\u0439\u043a\u043b\u043c\u043d\u043e\u043f\u0440\u0441\u0442\u0443\u0444\u0445\u0446\u0447\u0448\u0449\u044a\u044b\u044c\u044d\u044e\u044f', 
  			'\x80\x81\x82\x83\x84\x85\x86\x87\x88\x89\x8a\x8b\x8c\x8d\x8e\x8f\x90\x91\x92\x93\x94\x95\x96\x97\x99\x9a\x9b\x9c\x9d\x9e\x9f\xa1\xa2\xa3\xa5\xa8\xaa\xaf\xb2\xb3\xb4\xb8\xb9\xba\xbc\xbd\xbe\xbf\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdb\xdc\xdd\xde\xdf\xe0\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb\xfc\xfd\xfe\xff' 
  		); 
  	} 
  	else if (smf_charset == 'windows-1253') 
  	{ 
  		return this.php_strtr( 
  			'\u20ac\u201a\u0192\u201e\u2026\u2020\u2021\u2030\u2039\u2018\u2019\u201c\u201d\u2022\u2013\u2014\u2122\u203a\u0385\u0386\u2015\u0384\u0388\u0389\u038a\u038c\u038e\u038f\u0390\u0391\u0392\u0393\u0394\u0395\u0396\u0397\u0398\u0399\u039a\u039b\u039c\u039d\u039e\u039f\u03a0\u03a1\u03a3\u03a4\u03a5\u03a6\u03a7\u03a8\u03a9\u03aa\u03ab\u03ac\u03ad\u03ae\u03af\u03b0\u03b1\u03b2\u03b3\u03b4\u03b5\u03b6\u03b7\u03b8\u03b9\u03ba\u03bb\u03bc\u03bd\u03be\u03bf\u03c0\u03c1\u03c2\u03c3\u03c4\u03c5\u03c6\u03c7\u03c8\u03c9\u03ca\u03cb\u03cc\u03cd\u03ce', 
  			'\x80\x82\x83\x84\x85\x86\x87\x89\x8b\x91\x92\x93\x94\x95\x96\x97\x99\x9b\xa1\xa2\xaf\xb4\xb8\xb9\xba\xbc\xbe\xbf\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdb\xdc\xdd\xde\xdf\xe0\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb\xfc\xfd\xfe' 
  		); 
  	} 
  	else if (smf_charset == 'windows-1255') 
  	{ 
  		return this.php_strtr( 
  			'\u20ac\u201a\u0192\u201e\u2026\u2020\u2021\u02c6\u2030\u2039\u2018\u2019\u201c\u201d\u2022\u2013\u2014\u02dc\u2122\u203a\u20aa\u00d7\u00f7\u05b0\u05b1\u05b2\u05b3\u05b4\u05b5\u05b6\u05b7\u05b8\u05b9\u05bb\u05bc\u05bd\u05be\u05bf\u05c0\u05c1\u05c2\u05c3\u05f0\u05f1\u05f2\u05f3\u05f4\u05d0\u05d1\u05d2\u05d3\u05d4\u05d5\u05d6\u05d7\u05d8\u05d9\u05da\u05db\u05dc\u05dd\u05de\u05df\u05e0\u05e1\u05e2\u05e3\u05e4\u05e5\u05e6\u05e7\u05e8\u05e9\u05ea\u200e\u200f', 
  			'\x80\x82\x83\x84\x85\x86\x87\x88\x89\x8b\x91\x92\x93\x94\x95\x96\x97\x98\x99\x9b\xa4\xaa\xba\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xe0\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfd\xfe' 
  		); 
  	} 
  	else if (smf_charset == 'windows-1256') 
  	{ 
  		return this.php_strtr( 
  			'\u20ac\u067e\u201a\u0192\u201e\u2026\u2020\u2021\u02c6\u2030\u0679\u2039\u0152\u0686\u0698\u0688\u06af\u2018\u2019\u201c\u201d\u2022\u2013\u2014\u06a9\u2122\u0691\u203a\u0153\u200c\u200d\u06ba\u060c\u06be\u061b\u061f\u06c1\u0621\u0622\u0623\u0624\u0625\u0626\u0627\u0628\u0629\u062a\u062b\u062c\u062d\u062e\u062f\u0630\u0631\u0632\u0633\u0634\u0635\u0636\u0637\u0638\u0639\u063a\u0640\u0641\u0642\u0643\u0644\u0645\u0646\u0647\u0648\u0649\u064a\u064b\u064c\u064d\u064e\u064f\u0650\u0651\u0652\u200e\u200f\u06d2', 
  			'\x80\x81\x82\x83\x84\x85\x86\x87\x88\x89\x8a\x8b\x8c\x8d\x8e\x8f\x90\x91\x92\x93\x94\x95\x96\x97\x98\x99\x9a\x9b\x9c\x9d\x9e\x9f\xa1\xaa\xba\xbf\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd2\xd3\xd4\xd5\xd6\xd8\xd9\xda\xdb\xdc\xdd\xde\xdf\xe1\xe3\xe4\xe5\xe6\xec\xed\xf0\xf1\xf2\xf3\xf5\xf6\xf8\xfa\xfd\xfe\xff' 
  		); 
  	} 
  	else 
  		return this; 
  } 
   
  function smf_sessionKeepAlive() 
  { 
  	var curTime = new Date().getTime(); 
  	// Prevent a Firefox bug from hammering the server. 
  	if (smf_scripturl && curTime - lastKeepAliveCheck > 900000) 
  	{ 
  		var tempImage = new Image(); 
  		tempImage.src = smf_scripturl + (smf_scripturl.indexOf("?") == -1 ? "?" : "&") + "action=keepalive;" + curTime; 
  		lastKeepAliveCheck = curTime; 
  	} 
  	window.setTimeout("smf_sessionKeepAlive();", 1200000); 
  } 
  window.setTimeout("smf_sessionKeepAlive();", 1200000); 
  // Set a theme option through javascript. 
  function hashLoginPassword(doForm, cur_session_id)    /*burasi şifreleyen kodlar*/ 
  { 
  	// Compatibility. 
  	if (cur_session_id == null) 
  		cur_session_id = smf_session_id; 
  	if (typeof(hex_sha1) == "undefined") 
  		return; 
  	// Are they using an email address? 
  	if (doForm.user.value.indexOf("@") != -1) 
  		return; 
  	// Unless the browser is Opera, the password will not save properly. 
  	if (typeof(window.opera) == "undefined") 
  		doForm.passwrd.autocomplete = "off"; 
  	doForm.hash_passwrd.value = hex_sha1(hex_sha1(doForm.user.value.php_to8bit().php_strtolower() + doForm.passwrd.value.php_to8bit()) + cur_session_id); 
  	// It looks nicer to fill it with asterisks, but Firefox will try to save that. 
  	if (navigator.userAgent.indexOf("Firefox/") != -1) 
  		doForm.passwrd.value = ""; 
  	else 
  		doForm.passwrd.value = doForm.passwrd.value.replace(/./g, "*"); 
  } 
  function hashAdminPassword(doForm, username, cur_session_id)   
  { 
  	// Compatibility. 
  	if (cur_session_id == null) 
  		cur_session_id = smf_session_id; 
  	if (typeof(hex_sha1) == "undefined") 
  		return; 
  	doForm.admin_hash_pass.value = hex_sha1(hex_sha1(username.toLowerCase() + doForm.admin_pass.value) + cur_session_id); 
  	doForm.admin_pass.value = doForm.admin_pass.value.replace(/./g, "*"); 
  } 
  </script> 
  </head> 
  'KODLAR BASLIYOR' 
  <body> 
  <form method="post" action="deneme.asp" onSubmit="hashLoginPassword(this,'<%Session.SessionID%>')"> 
  Kullanci adi: <input name="user"  type="text" /><br /> 
  sifre:<input name="passwrd" type="text" /> 
  <br /> 
  <input type="submit" value="Gonder" /> 
  <input type="hidden" name="hash_passwrd" value="" /> 
  </form> 
  <% 
  isim =Request.Form("user") 
  Sifre=Request.Form("passwrd") 
  Pass=Request.Form("hash_passwrd") 
  Set esitle = adocon.execute("Select * from smf_members Where membername='deneme'") 
  	Response.Write("Simdiki olusan sifre: "&Pass&"<br />") 
  	Response.Write("Veritabanindaki sifre: "&esitle("passwd")&"<br />") 
  if Pass = esitle("passwd") Then 
  Response.Write("  sifreler esitlendi") 
  Else 
  Response.Write("  sifreler esitlenmedi") 
  end if 
  esitle.close 
  Set esitle = Nothing 
  %> 
  </body> 
  </html>

yukarıdaki deneme.asp deki forma;
Kullanıcı adı: deneme
şifre:123456
yazın ve gondere tıklayın. çıkan sonuç:

Simdiki olusan Sifre: 2175816b819e5194c3113001ffe18a6433ca4526
Veritabanindaki Sifre: 7ceafbdff71ac6ac7b25667112032973bbbfeed8
sifreler esitlenmedi

Nerde yanlış yapıyorum? yardımcı olacak arkadaşlara şimdiden çok ama çok teşekkür ederim

Dumanyack

Yüzbaşı

446 Mesaj

Tüm Başarılarını Gör

Dumanyack

Yüzbaşı

446 Mesaj

Tüm Başarılarını Gör

Smf forum ile Şifrelenmiş veriye ASP ile ulaşmak

Benzer içerikler