passwords | 易学教程

How to use private key on a PKCS#11 module instead of perivate key file for mutual-authentication in OpenSSL?

阅读更多关于 How to use private key on a PKCS#11 module instead of perivate key file for mutual-authentication in OpenSSL?

I've a simple SSL client that uses OpenSSL library. My server requires client authentication & so I've to set client's private key stored in a password protected PEM file. I use the following code for this purpose: /* set the private key from KeyFile */ if (SSL_CTX_use_PrivateKey_file(ctx, KeyFile, SSL_FILETYPE_PEM) <= 0) { ERR_print_errors_fp(stderr); abort(); } /* verify private key */ if ( !SSL_CTX_check_private_key(ctx) ) { fprintf(stderr, "Private key does not match the public certificate\n"); abort(); } Now I want to know how can I establish a SSL connection using private key stored on a

How to enforce user to change passwd after Password Expiration timeout in Android 3.0?

阅读更多关于 How to enforce user to change passwd after Password Expiration timeout in Android 3.0?

问题 I was trying to use Android Password expiration feature using DeviceAdmin . When I call setPasswordExpirationTimeout() API , it only sends a notification and doesn't actually force the user to change the password. It only sends a notification after timeout: V/DevicePolicyManagerService( 662): Sending password expiration notifications for action com.android.server.ACTION_EXPIRED_PASSWORD_NOTIFICATION You have to get the callback in DeviceAdminReceiver in onPasswordExpired() to force user to

Safely storing credentials when I need to retrieve the password for use

阅读更多关于 Safely storing credentials when I need to retrieve the password for use

问题 Does Microsoft or Windows provide a mechanism for access to a set of credentials, where I can't just store a salted version of the password; namely I need to have the password itself. I have a webservice that responds to requests where if the user is authenticated and belongs to a distribution list, a job needs to start on a unix machine using a unix account. I'm using the fantastic ssh.net library to remote from the web service to the linux machine and start the required process but up to

Changing User Password in PHP and mySQL

阅读更多关于 Changing User Password in PHP and mySQL

问题 Found the answer!! Found the answer after a long break from looking at it! was just simply changing $querynewpass = "UPDATE tz_members SET `pass`='".$_POST['$passwordnew1']."' WHERE usr='{$_SESSION['usr']}'"; to: $querynewpass = "UPDATE tz_members SET `pass`='".md5($_POST['passwordnew1'])."' WHERE usr='{$_SESSION['usr']}'"; just the simple md5 that i had missed off! The Problem: im trying to change a user password using a form where they enter their current password and a new password. it

jquery add method and implementation

阅读更多关于 jquery add method and implementation

问题 Ok so from my previous post I got a lot of good feedback. I am starting this one so that I can start a new question and add the full code I have. i know something is messing up, but here is my method and implementation. jquery.validator.addMethod("passwordRules", function(input) { var reg = /^{^%\s]{6,}$/; var reg2 = /[a-zA-Z]/; var reg3 = /[0-9]/; return reg.test(input) && reg2.test(input) && reg3.test(input); }); that is my add method. here is how I am trying to apply it to the new password

Safe to hard code a password in mobile app

阅读更多关于 Safe to hard code a password in mobile app

问题 I have a web server that creates a QR code which is [username] + a md5 hash of [username][password]. Where [username] is the user logged in at the time. Where [password] is a system password set by me and common to web server and the apps. My Android/iPhone/BlackBerry/Windows app will scan this QR code and use the [username] provided in the QR code to hash with [password] which will tell me that the QR code came from my server. Obviously if someone were to get hold of [password] then they

How does a legitmate administrator get a user's password in ActiveDirectory?

阅读更多关于 How does a legitmate administrator get a user's password in ActiveDirectory?

问题 If a password is stored with reversable encryption in Active Directory, how does an administrator/developer extract and decrypt this password? Specifically, I'm referring to this setting. 回答1: Although Dirk's answer is correct, the RevDump tool only works on Windows Server 2003, as newer versions of Windows store the reversibly encrypted passwords in a different way. Therefore I have created a new tool that supports Windows Server 2008+. Simplest usage example: Get-ADReplAccount

Create encrypted passwords

阅读更多关于 Create encrypted passwords

I am using a small cakephp setup, with no forgot password functionality. I want to be able to create a hashed password, using the same security hashing method and cipherseed used in the site. Is there a way to recreate the setup in a local php file which would output a hashed password, the system would understand? Make sure to specify that you're using the Security Component in whatever controller you're working in: var $components = array('Security'); Then, in the action (method/function...whatever): $myPassword = 'pizzaRules!'; $hashedPassword = Security::hash($myPassword, null, true); The

Javascript disable space key for change password textboxes

阅读更多关于 Javascript disable space key for change password textboxes

问题 ,Hi all, var veri = { YeniSifreTextBox: $('#YeniSifreTextBox_I').val(), YeniSifreTekrarTextBox: $('#YeniSifreTekrarTextBox_I').val(), }; if (veri.YeniSifreTextBox == '' || veri.YeniSifreTekrarTextBox == '') { alert("Password Can not be empty!"); } else if (veri.YeniSifreTextBox != veri.YeniSifreTekrarTextBox) { alert("Passwords dont not match !"); } I can control password can not be empty and passwords dont not match with above codes. I want to disable to enter space key while user write

How do I password-protect an Excel file created in R with write.xlsx?

阅读更多关于 How do I password-protect an Excel file created in R with write.xlsx?

问题 In my data analysis in R I sometimes output data to Excel files using write.xlsx . These files need to be password-protected, and currently I am doing this by opening the unprotected file using Excel, and then adding a password using File - Protect Workbook - Encrypt with Password . Is there a way to do this directly in R so that I don't have to open the Excel file and manually add the password? (I want to password-protect the whole workbook, not just a single sheet.) 回答1: From the xlsx