how to decrypt an asp.net membership password from database

Question

1.00/5 (3 votes)

See more:

Hi All,

I have used memebership in my database,and in aspnet_membership table the password is saved in encrypted format ,now i want to provide forgot password option to user

how can i get the decrypted original password from database

can anybody pls help me its urgent..
Thanks in advance

Posted 8-Apr-13 2:55am

Member 9972821

Add a Solution

Comments

[no name] 8-Apr-13 8:59am

No.... it's not urgent at all. What makes you think that the password could be decrypted? Besides that, you have not said what was used to encrypt the password? You would the same algorithm to decrypt it. Only decrypting instead of encrypting.

bbirajdar 8-Apr-13 9:29am

In that case why are you encrypting it.. Decrypting a password totally fails what is it made for ... Provide the user with a password reset link instead

2 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Sergey Alexandrovich Kryukov · Answer 1 · 2013-04-08T03:06:00

First of all, get rid of such an unsafe schema where you can encrypt a password. In any decent authentication model, a password cannot be "decrypted"; this is never needed.

Surprised? Please see my past answers for further detail:
storing password value int sql server with secure way[^],
Decryption of Encrypted Password[^],
i already encrypt my password but when i log in it gives me an error. how can decrypte it[^].

—SA

CHill60 · Answer 2 · 2013-04-08T03:06:00

If you have used any of the "standard" tools for encryption then they are specifically designed to prevent decryption - you would be better off offering a replace-password option with (encrypted) security questions to validate.

Have a look at the discussions here http://stackoverflow.com/questions/173329/how-to-decrypt-a-password-from-sql-server[^]

how to decrypt an asp.net membership password from database

2 solutions

Solution 1

Solution 2

Add your solution here

Preview 0