[Koha] [Koha-devel] Borrowers' password encryption method in database

Chris Nighswonger cnighswonger at foundations.edu
Sun Nov 21 01:01:11 NZDT 2010


 2010/11/20 Altaf Mahmud <altaf.mahmud at gmail.com>

> Hi,
>
> I want to know how Koha saves its borrowers' password in database? Is it
> one-way conversion? For example, if a password is saved as
> '4QrcOUm6Wau+VuBX8g+IPg', can I decode it back to its original text which
> was '123456'?
>

They are stored as MD5 hashes and you cannot "decode" them as such. IIRCC,
what you must do is make an MD5 hash of the password and then compare the
two hashes. They should be the same.

Kind Regards,
Chris
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.katipo.co.nz/pipermail/koha/attachments/20101120/5b77dc6a/attachment.htm 


More information about the Koha mailing list