Quote:
posted January 22, 2000 03:11 PM PST If you are putting your database file in a .htaccess protected directory, then you can leave the password in plain text.
If not, then we will have to figure out something that will allow users to input a password, have it stored in an encrypted form, and then have people be able to receive the actual plain text password via email.
The encryption part is not hard, but sending the password in plain text from an encrypted format is the hard part.
The easiest thing to do is put your links.db file in a password protected directory and leave the password in plain text.
I had forgotten this, and went ahead and added type="password" to the Password input form in both the modify_first and modify templates that I am developing. They both worked without a hitch. The forms show the Password as ***** but database was updated in plain text.
I changed the password successfully as well.
Then I tested the password.cgi to email the forgotten password, and it came through in plain text as well.
So, since that works, my question is, are there any cross-browser issues, or anything I am overlooking that might affect this?
------------------
BruceS