|
Home > Archive > SQL Anywhere database > October 2005 > Decrypt Password stored in sysuserperm
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Decrypt Password stored in sysuserperm
|
|
| Hemlata Tripathi 2005-10-27, 7:40 am |
| I need to validate the user and password which is entered from client
machine against the user/password stored in server.
I am using ASA 9.01 network server and the front end app is written in
powerbuilder.
Is there any function in ASA which would decrypt the password stored in
sysuserperm table. The only place i know , where the user id/password are
stored is the sysuserperm table.
Is there any system stored procedure which would return the user id /
password combination.
I don't know if we can do this in powerbuilder. But this would not be the
correct place to post a question about powerbuilder validation .
Thanks
Hemlata Tripathi
| |
| Chris Keating \(iAnywhere Solutions\) 2005-10-27, 7:40 am |
| Wouldn't the uid/pwd would be validated if the connection is successful? Can
you perhaps be more detailed in the specifics of your requirements.
That said, the password encryption is an intended security feature. If there
was a easy method to decrypt the password, it would create a security issue.
--
Chris Keating
Sybase Adaptive Server Anywhere Professional Version 8
********************
********************
********************
*****************
Sign up today for your copy of the SQL Anywhere Studio 9 Developer Edition
and try out the market-leading database for mobile, embedded and small to
medium sized business environments for free!
http://www.ianywhere.com/promos/deved/index.html
********************
********************
********************
*****************
iAnywhere Solutions http://www.iAnywhere.com
** Please only post to the newsgroup
** Whitepapers can be found at http://www.iAnywhere.com/developer
** EBFs can be found at http://downloads.sybase.com/swx/sdmain.stm
** Use CaseXpress to report bugs http://casexpress.sybase.com
********************
********************
********************
*****************
| |
| Hemlata Tripathi 2005-10-27, 7:40 am |
| In continuation with the previous email regarding uid/pwd validation , if i
put an incorrect uid/pwd combination , before i trap sqlca.sqlerrtext, i get
the default "Connect To Adaptive Server Anywhere" box with odbc tabpage
highlighted.
"Chris Keating (iAnywhere Solutions)" <keating@iAnywhere.com> wrote in
message news:4357a661$1@foru
ms-1-dub...
> Wouldn't the uid/pwd would be validated if the connection is successful?
> Can you perhaps be more detailed in the specifics of your requirements.
>
> That said, the password encryption is an intended security feature. If
> there was a easy method to decrypt the password, it would create a
> security issue.
> --
>
> Chris Keating
> Sybase Adaptive Server Anywhere Professional Version 8
>
> ********************
********************
********************
*****************
> Sign up today for your copy of the SQL Anywhere Studio 9 Developer Edition
> and try out the market-leading database for mobile, embedded and small to
> medium sized business environments for free!
>
> http://www.ianywhere.com/promos/deved/index.html
>
> ********************
********************
********************
*****************
>
> iAnywhere Solutions http://www.iAnywhere.com
>
> ** Please only post to the newsgroup
>
> ** Whitepapers can be found at http://www.iAnywhere.com/developer
> ** EBFs can be found at http://downloads.sybase.com/swx/sdmain.stm
> ** Use CaseXpress to report bugs http://casexpress.sybase.com
>
> ********************
********************
********************
*****************
>
>
| |
| Chris Keating \(iAnywhere Solutions\) 2005-10-27, 7:40 am |
| That is the behaviour of ODBC conenctions. It can be changed by setting
ConnectOption='SQL_D
RIVER_CONNECT,SQL_DR
IVER_NOPROMPT' as in the example
below:
// Profile ASA 9.0 Sample
SQLCA.DBMS = "ODBC"
SQLCA.AutoCommit = False
SQLCA.DBParm = " ConnectString='DSN=A
SA 9.0
Sample',ConnectOptio
n='SQL_DRIVER_CONNEC
T,SQL_DRIVER_NOPROMP
T'"
--
Chris Keating
Sybase Adaptive Server Anywhere Professional Version 8
********************
********************
********************
*****************
Sign up today for your copy of the SQL Anywhere Studio 9 Developer Edition
and try out the market-leading database for mobile, embedded and small to
medium sized business environments for free!
http://www.ianywhere.com/promos/deved/index.html
********************
********************
********************
*****************
iAnywhere Solutions http://www.iAnywhere.com
** Please only post to the newsgroup
** Whitepapers can be found at http://www.iAnywhere.com/developer
** EBFs can be found at http://downloads.sybase.com/swx/sdmain.stm
** Use CaseXpress to report bugs http://casexpress.sybase.com
********************
********************
********************
*****************
| |
| Mark Culp 2005-10-27, 7:40 am |
| The value stored in the sysuserperm table is a one-way hash -
the original password string cannot be recovered from the hash.
--
Mark Culp
SQLAnywhere Research and Development
-------------------------------------------------------------------------
** Whitepapers, TechDocs, bug fixes are all available through the **
** iAnywhere Developer Community at http://www.ianywhere.com/developer **
-------------------------------------------------------------------------
Hemlata Tripathi wrote:
>
> I need to validate the user and password which is entered from client
> machine against the user/password stored in server.
> I am using ASA 9.01 network server and the front end app is written in
> powerbuilder.
>
> Is there any function in ASA which would decrypt the password stored in
> sysuserperm table. The only place i know , where the user id/password are
> stored is the sysuserperm table.
> Is there any system stored procedure which would return the user id /
> password combination.
>
> I don't know if we can do this in powerbuilder. But this would not be the
> correct place to post a question about powerbuilder validation .
>
> Thanks
>
> Hemlata Tripathi
| |
| Hemlata Tripathi 2005-10-27, 7:40 am |
| Thanks chris.
It works just great.
hemlata
"Chris Keating (iAnywhere Solutions)" <keating@iAnywhere.com> wrote in
message news:4357b729$1@foru
ms-1-dub...
> That is the behaviour of ODBC conenctions. It can be changed by setting
> ConnectOption='SQL_D
RIVER_CONNECT,SQL_DR
IVER_NOPROMPT' as in the example
> below:
>
> // Profile ASA 9.0 Sample
> SQLCA.DBMS = "ODBC"
> SQLCA.AutoCommit = False
> SQLCA.DBParm = " ConnectString='DSN=A
SA 9.0
> Sample',ConnectOptio
n='SQL_DRIVER_CONNEC
T,SQL_DRIVER_NOPROMP
T'"
>
>
> --
>
> Chris Keating
> Sybase Adaptive Server Anywhere Professional Version 8
>
> ********************
********************
********************
*****************
> Sign up today for your copy of the SQL Anywhere Studio 9 Developer Edition
> and try out the market-leading database for mobile, embedded and small to
> medium sized business environments for free!
>
> http://www.ianywhere.com/promos/deved/index.html
>
> ********************
********************
********************
*****************
>
> iAnywhere Solutions http://www.iAnywhere.com
>
> ** Please only post to the newsgroup
>
> ** Whitepapers can be found at http://www.iAnywhere.com/developer
> ** EBFs can be found at http://downloads.sybase.com/swx/sdmain.stm
> ** Use CaseXpress to report bugs http://casexpress.sybase.com
>
> ********************
********************
********************
*****************
>
>
|
|
|
|
|