Tips and Tricks

MD5 Passwords Encryption

Methods to reset login password for WordPress

By Catalin Bocanu, Web News Editor

26th of May 2008, 15:17 GMT

Adjust text size:

Editing user_pass Field Using phpMyAdmin

The strength of passwords, as well as their encryption mechanism, is crucial for the security of database driven applications. If you own a website constructed on a ready-made content management system architecture, the back-end administration password will always be protected by using a certain type of encryption mechanism.

In the case of the WordPress platform, as well as in that of many

other content management systems, passwords are stored in the database encrypted with the MD5 encryption algorithm. This way, anyone who would crack the MySQL database login system, would not find out the plain text version of the password because MD5 is a one-way encryption algorithm. As a consequence, the login password necessary to access the WordPress administration panel cannot be recovered, just reset.

If you happen to forget the login password for a known username associated to a certain WordPress installation, there are a few methods to reset it. The simplest one would be to use the automatic script that requires you to know the username and a corresponding valid email address existing in the MySQL database.

In case the PHP installation does not have the email function enabled or the email address is not valid, the manual reset procedure must be performed. You will need an MD5 hash generator (there are many of them free and available online like Epleweb, for example) and administrative rights for the MySQL database containing WordPress data.

By using a MySQL database manager like phpMyAdmin or MySQL Query Browser, select the table called wp_users from the WordPress database, and then click the browse button and select the record that you need to edit. In the user_pass field, the MD5 hash value corresponding to the plain text version of your password must be pasted and the modifications must be saved. The password can be also reset with the help of a script.

In conclusion, it is recommended you choose an easy to remember password for your WordPress user account, one that you must change often. In case that none of the password reset mechanisms work, you will have to reinstall the WordPress application.

TAGS:

WordPress | Content Management System | Password Encryption | Password Security | MD5

SEARCH THE NEWS ARCHIVE :

Today's News | Yesterday's News | News Archive

User opinions:

Comment #1 by: voor on 26 May 2008, 21:03 GMT	reply to this comment
Uhhh... MD5 is NOT an encryption algorithm, it's a one-way hash function.

Comment #2 by: voodoo on 27 May 2008, 07:52 GMT	reply to this comment
Agreed with voor, and MD5 is considered to be obsolete, since it has been partially broken. SHA-2 class hash algorithms are the way to go.

Comment #3 by: Vooroo on 01 Oct 2008, 18:46 GMT	reply to this comment
I agree with the two kids that posted before me.

Share your opinion:

SUBMIT PROGRAM \| ADVERTISE \| GET HELP \| SEND US FEEDBACK \| RSS FEEDS \| ENTER NEWS SITE \| ENGLISH BOARD \| ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved. Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.	Copyright Information \| Privacy Policy \| Terms of Use \| Update your software \| Archive

NEWS CATEGORIES: