Jump to content

Search the Community

Showing results for tags 'password'.

More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • News and Announcements
    • News and Announcements
  • osCommerce Online Merchant v2.x
    • General Support
    • osCommerce Online Merchant Community Bootstrap Edition
    • Add-Ons
  • Development
  • General
    • General Discussions
    • Live Shop Reviews
    • Security
    • Developer Feedback
  • PayPal's Announcements
  • Sage Pay's Announcements
  • Solomono - new level osCommerce templates's Announcements
  • German Community's OSCOM v2.x
  • German Community's Allgemein

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start



Real Name




Found 5 results

  1. I have Simple Master Password v3.1 osC 2.3.x installed on CE BS4 PHP-7.2 I am not sure if the issue i have is by design or not all seems to work fine except if a client has purchased via paypal express I cannot log on as the customer for a new sale to be made via other means when i look into the database there are no passwords stored for these transactions, and i can understand why if that is supposed to be the case But would have thought we could still login as the customer after the fact I am pretty sure we could on the old server with a lower PHP of 5.4, I do not think it has such a high encryption, and certainly never said encypt in the admin panel as the version above does so the question is should i be able to log in as a old paypal express customer? Should the database be storing passwords for paypal express customers? Hope i have explained this enough regards david
  2. i just updated Phpass from 0.3 to 0.5 in /includes/classes/passwordhash.php http://www.openwall.com/phpass/ and changed in includes/functions/password_funcs.php in function tep_encrypt_password($plain) and in function tep_validate_password($plain, $encrypted) { this $hasher = new PasswordHash(10, true); to $hasher = new PasswordHash(10, false); i now have a 60 char blowfish hash output. before i had a 34 char hash in the database field. Is there a reason not to change it that way? i think the passwords are encrypted with a stronger hash function that way and it should be php5.3+ compatible. account creation, change password and reset password seems to work just fine. and as someone asked about max length of password in Oscommerce Discord Chat. Is there a password length limit? i dont think so. Should there be a limit? (see https://sunnysingh.io/blog/secure-passwords ) "Passwords should never be longer than 72 characters to prevent DoS attacks". Regards, Stephan
  3. Trying to install the password protect addon to protect entire shop. I also have the member approval addon installed. The addon was created for 2.2, I am installing on 2.3 and get the following error: When you click on continue button for creating a new account, it does nothing. Seems to refresh the page. http://classicbeautysupply.com/oscom/login.php
  4. I did find and install the password protect add-on published by badeziner.com in 2008. However, the index.php page does not display when I publish the add-on files. And it seems the support website no longer exists. Can anyone recommend an add-on that will password protect the entire store?
  5. Hi I can not find anywhere in 2.3.3 to change the customers password via the admin panel only. Can anyone point me in the direction on how to do this? Also is there a way to select what is a new product?