Problem with PHP MD5 Encryption

**personalmgt** · 08-12-2009, 10:03 PM

Hey guys, im pretty new to PHP but has a background on C Programming. I have a really, really ridiculous problem. This is about the MD5 encryption which I use in a login page. I got the code from phpmyeasy and this is what the md5 encryption source code looks like:

$encrypted_mypassword=md5($mypassword);
$sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$encrypted_mypassword'";
$result=mysql_query($sql);

This code is correct. But the problem is whenever I use the correct login details, it says my password is wrong. I have asked my friend who happens to be a pro at PHP and he says the code is correct. I have an old working PHP login page where the MD5 encryption works and I compared, this is what the code looks like:

$mypassword=md5($mypassword);
$sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$mypassword'";
$result=mysql_query($sql);

This code works, as you can see in the bolded part, I changed the variable $encrypted_mypassword to $mypassword. This works and it makes me wonder why $encrypted_mypassword doesnt work with it. Does anyone have a clue why is this happening?

I have checked everything from my databases and even initiated $encrypted_mypassword at the start of the code but still it wont work.

**dodie** · 08-12-2009, 10:09 PM

Yes, your codes are fine. really.

Probably you have problem with your conding conventions or nameing convetions. Maybe the name was declared in a global scope or used somewhere?

Isolate your codes.

Maybe you can do like this..
$sql="SELECT * FROM ".$tbl_name." WHERE username='".$myusername."' and password='".$encrypted_mypassword."' ";

Try the concatenation.

**Dondon** · 08-12-2009, 10:12 PM

Bai, have you checked if ang md5ed value ang musulod sa database? Try pud e echo ang value sa variable. I see nothing wrong with the codes above.

**personalmgt** · 08-12-2009, 10:27 PM

Originally Posted by dodie

*snip*

Thanks for the try bro but it didn't work :\

I tried any variable name, but still it wont work. I think that solves the naming convention but then i'll take that into consideration.

Originally Posted by Dondon

Bai, have you checked if ang md5ed value ang musulod sa database? Try pud e echo ang value sa variable. I see nothing wrong with the codes above.

Ok raman ang md5ed value don. I'll try echoing the variables nya.

**Dondon** · 08-12-2009, 10:31 PM

I'm not sure pud ha if this can solve your problem, kay ana man ka na mu work ang 2nd code (using $mypassword instead of $encrypted_mypassword), but dili kaha problema na sa data type? Try setting it to varchar(100) basin dili ra masigo hehehe.

**personalmgt** · 08-12-2009, 11:03 PM

Finally found the problem, I echoed the variables and they're correct. The problem was here:

$sql="SELECT * FROM $tbl_name WHERE username='$myusername' and password='$encrypted_password'";
$result=mysql_query($sql);

This is the part where the password is compared to the database. In the bolded area is $encrypted_password and before i solved it, that was $mypassword. That was the reason why the CGI only works with $mypassword. LOL yeah, my bad. Thanks for the effort guys

**Dondon** · 08-12-2009, 11:05 PM

LOLOL. Need more coffee 'tian

**personalmgt** · 08-12-2009, 11:07 PM

Probably yeah, kanina pa kong buntag nag-sige ug experiment diri. Didn't notice duha diay kabuok ang kato nga code na akong gi-quote. Oh well, problem solved.

**emailroy2002** · 08-13-2009, 12:17 AM

ok na diay..

)

**markykoy** · 10-25-2009, 09:53 PM

amazing.. the word "my" lang ang problem. ayos ah.. I'm picking up something about PHP and mySQL. bai, post pa mo mga problems. para pud makabrain storm ta. At least makasabot ang mga tao na interesado ug programming.

Thread: Problem with PHP MD5 Encryption

Thread Tools

Search Thread