We got a custom central login script in PHP that connects to several PLESK servers to check if the user has entered correct username and password and, if they have, redirect the user and automaticly logs in the user to the correct server where the customers domain account is located. Simplified, it does a "SELECT * from table where user='username' AND password='pass'" on each PLESK server we got and if a match is recived we know that the username/password is correct and what server it is located on.
In PLESK 8.6 this was pretty easy since passwords were stoed in the MySQL database in plain text, but in PLESK 10 it seems to be encrypted.
I have located the psa database table smb_users and the fields login and password, but the password is encrpted so I can not simple run
select * from smb_users where login='username' and password='12345';
I tried MD5 and SHA1 like below with no luck:
select * from smb_users where login='username' and password=MD5('12345');
select * from smb_users where login='username' and password=SHA1('12345');
So, the passwords are encrypted but I do not know in what way.
Question is, how do I run a SQL command on a PLESK 10 server to check for a username/password combination?
In PLESK 8.6 this was pretty easy since passwords were stoed in the MySQL database in plain text, but in PLESK 10 it seems to be encrypted.
I have located the psa database table smb_users and the fields login and password, but the password is encrpted so I can not simple run
select * from smb_users where login='username' and password='12345';
I tried MD5 and SHA1 like below with no luck:
select * from smb_users where login='username' and password=MD5('12345');
select * from smb_users where login='username' and password=SHA1('12345');
So, the passwords are encrypted but I do not know in what way.
Question is, how do I run a SQL command on a PLESK 10 server to check for a username/password combination?