I’ve been trying to authenticate users from a website via my jabber-database (MySQL, not the embedded one). LDAP would be total overkill and I just need MySQL.
The problem I have is that I can’t find the exact password encryption algorhythm. I tried very hard to find any solution in this support forum and via google, but hardly found anything.
My status right now: I know the basic-encryption is blowfish (which uses the passwordKey that can be found in the MySQL-db in table “ofProperty”). But the password isn’t just encrypted with blowfish, it’s “salted” (which I didn’t know before, but AFAIK it means it’s changed with some kind of random phrase to make it even more secure).
So, how to get an entered password (via form) encrypted so it matches the password I can find in the database as “encryptedPassword” ?
I really hope to get help here Looking forward to get some more information…
Thanks in advance,