Comments on: WP Password Reset http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/ Weblog Tools Blogging Tools Blog Tue, 02 Dec 2008 02:03:11 +0000 http://wordpress.org/?v=2.6.5 By: Alpesh Nakars’ Blogosphere » WordPress Links: June 1 2007 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160937 Alpesh Nakars’ Blogosphere » WordPress Links: June 1 2007 Fri, 01 Jun 2007 14:19:55 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160937 [...] Did you forget your WordPress administrator password? No worries. Reset your lost WordPress administrator password. (Credit: WTC) [...] [...] Did you forget your WordPress administrator password? No worries. Reset your lost WordPress administrator password. (Credit: WTC) [...]

]]> By: whoo http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160857 whoo Thu, 31 May 2007 16:59:11 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160857 hahaha, relax people. No-one says you have to use the damn thing, and I do say it's intended as a LAST RESORT. For those who didnt notice, there are NO outbound links on the script.. I could have linked right back to the codex article that explains all the other ways to recover your password. I didnt, on purpose, because once a user clicks away, theyre apt to forget to delete it. God, give it a rest already, it serves a very distinct purpose - to help ppl that don' tunderstand phpmyadmin. Obviously, if you know how to do things in phpmyadmin, you wouldn't want this. But guess what, like it or not, NOT every wordpress user gets (by gets, I mean understands) phpmyadmin, and more yet, they don't want to -- they just want their fricken password changed. hahaha, relax people. No-one says you have to use the damn thing, and I do say it’s intended as a LAST RESORT.

For those who didnt notice, there are NO outbound links on the script.. I could have linked right back to the codex article that explains all the other ways to recover your password. I didnt, on purpose, because once a user clicks away, theyre apt to forget to delete it.

God, give it a rest already, it serves a very distinct purpose - to help ppl that don’ tunderstand phpmyadmin. Obviously, if you know how to do things in phpmyadmin, you wouldn’t want this. But guess what, like it or not, NOT every wordpress user gets (by gets, I mean understands) phpmyadmin, and more yet, they don’t want to — they just want their fricken password changed.

]]> By: David Russell http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160515 David Russell Fri, 25 May 2007 22:18:37 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160515 If the database is inaccessible, then this <strike>disaster waiting to happen</strike> script surely won't work either? It's not as if server hacking or the ability to 'rattle off MD5 hashes from memory' are even required to fix password problems in a secure manner - phpmyadmin (which I guess is installed on most hosts who offer MySQL) includes a function to take an entered value (say, the new password the user wants) and store the MD5 hash of it in a database field. For those not graced with phpmyadmin, there are plenty of sites offering a javascript box to generate MD5s. If the database is inaccessible, then this disaster waiting to happen script surely won’t work either? It’s not as if server hacking or the ability to ‘rattle off MD5 hashes from memory’ are even required to fix password problems in a secure manner - phpmyadmin (which I guess is installed on most hosts who offer MySQL) includes a function to take an entered value (say, the new password the user wants) and store the MD5 hash of it in a database field. For those not graced with phpmyadmin, there are plenty of sites offering a javascript box to generate MD5s.

]]> By: WeblogToolsCollection Español » Blog Archive » Restaurar tu clave de acceso a WP http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160419 WeblogToolsCollection Español » Blog Archive » Restaurar tu clave de acceso a WP Thu, 24 May 2007 19:49:08 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160419 [...] Si es la primera vez que nos visitas, te puedes suscribir a nuestro feed RSS aqui. Gracias por tu visita! [Entrada traducida. Original] [...] [...] Si es la primera vez que nos visitas, te puedes suscribir a nuestro feed RSS aqui. Gracias por tu visita! [Entrada traducida. Original] [...]

]]> By: Chris Mou http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160301 Chris Mou Wed, 23 May 2007 13:12:43 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160301 Azrin - both those ideas were covered in the original post. As sensible as that is, what would you do if the "forgot password" link broke and the database was inaccessible?? Although I do agree, it is a mess. I just hope all the non-techie users amongst us remember to kill the file off the server when they're done! Azrin - both those ideas were covered in the original post. As sensible as that is, what would you do if the “forgot password” link broke and the database was inaccessible??

Although I do agree, it is a mess. I just hope all the non-techie users amongst us remember to kill the file off the server when they’re done!

]]> By: azrin http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160290 azrin Wed, 23 May 2007 08:14:38 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160290 That's just a mess. I just always have a secondary backup ID so I can always promote myself to be the admin. Or else... find the admin ID under WP_USERS table and change the password or better still EMAIL ADDRESS INSTEAD..and request for a new password. azrin @ http://www.azrin.net That’s just a mess. I just always have a secondary backup ID so I can always promote myself to be the admin. Or else… find the admin ID under WP_USERS table and change the password or better still EMAIL ADDRESS INSTEAD..and request for a new password.

azrin @ http://www.azrin.net

]]> By: Azmeen http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160280 Azmeen Wed, 23 May 2007 02:11:07 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160280 If you can have access to upload the file, then you surely have access to your wp-config.php file. Just take a peep inside for your MySQL username and password. Once you get that then it's just a matter of logging on to your MySQL database, going to your wp_user table, and setting a new admin password: <code>UPDATE wp_users SET user_pass=MD5('newpassword') WHERE ID=1</code> Then just login to your WP installation with <em>newpassword</em> as the admin password. Of course you could use any password you want, just change it in the SQL accordingly. If you can have access to upload the file, then you surely have access to your wp-config.php file. Just take a peep inside for your MySQL username and password.

Once you get that then it’s just a matter of logging on to your MySQL database, going to your wp_user table, and setting a new admin password:

UPDATE wp_users SET user_pass=MD5('newpassword') WHERE ID=1

Then just login to your WP installation with newpassword as the admin password.

Of course you could use any password you want, just change it in the SQL accordingly.

]]> By: Resetear la contraseña de tu blog en Wordpress | PuntoGeek http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160277 Resetear la contraseña de tu blog en Wordpress | PuntoGeek Wed, 23 May 2007 01:00:11 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160277 [...] Vía | Weblog Tools Collection [...] [...] Vía | Weblog Tools Collection [...]

]]> By: Richy’s Random Ramblings / Wordpress Password Recovery http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160261 Richy’s Random Ramblings / Wordpress Password Recovery Tue, 22 May 2007 20:58:02 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160261 [...] a couple of solutions to this - you can either use the Emergency Password Recovery (thanks WeblogToolsCollection) or, if you have got access to the MySQL database, either change the email address contained [...] [...] a couple of solutions to this - you can either use the Emergency Password Recovery (thanks WeblogToolsCollection) or, if you have got access to the MySQL database, either change the email address contained [...]

]]> By: Jaypee http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160247 Jaypee Tue, 22 May 2007 17:39:24 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160247 I agree with you. This plugin, although it can be useful in case of emergency, it does create a chance for hackers and other malicious users. I agree with you. This plugin, although it can be useful in case of emergency, it does create a chance for hackers and other malicious users.

]]> By: David Bradley http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160228 David Bradley Tue, 22 May 2007 16:16:12 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160228 A hackademic even? db A hackademic even?

db

]]> By: Emre http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160226 Emre Tue, 22 May 2007 14:59:39 +0000 http://weblogtoolscollection.com/archives/2007/05/22/wp-password-reset/#comment-1160226 I'll try it and see how does it look? I’ll try it and see how does it look?

]]>