How do I change a password directly in the PhpBB3 SQL database?

linux mysql phpbb phpbb3
13,873

Solution 1

run mysql and select the relevant database then use the MD5 function to set the password on the account that you want to change.

For example if your phpbb3 database is called Yourphpbb3db and the users table is phpbb_users then

mysql -u root -p

enter your password

mysql> show databases;
mysql> use database Yourphpbb3db;
Database changed
mysql> UPDATE phpbb_users SET user_password = MD5('YourPassword') WHERE username='YourAdminName';

Solution 2

Answer found elsewhere (credit: joshhighland.com)

run the update manually but use one of the following example hashes;

Hash: e10adc3949ba59abbe56e057f20f883e Password: 123456

Hash: $H$9Ae3Uk.ECdWW5ya13M4ErWhr4c.761/ Password: password

e.g. mysql> update phpbb_users set user_password='e10adc3949ba59abbe56e057f20f883e' where username = 'YourUserName';

...then login and change the password to one you'll remember afterwards :)

Share:
13,873

Related videos on Youtube

Captain Blammo
Author by

Captain Blammo

Updated on September 17, 2022

Comments

  • Captain Blammo
    Captain Blammo almost 2 years

    I have inherited a PhpBB3 installation from an uncontactable previous admin who didn't leave me the password, or any mechanism to retrieve it.

    It runs on a MySQL database, which I have logged into with full privileges in order to change the admin password. Unfortunately, PhpBB3 apparently uses a complex multistage salted hashing technique that I'm not familiar with. Given full access to the DB, how do I generate a valid password hash to replace the old one with?

    I tried a simple MD5 of the known password of a normal user, and it doesn't match the DB entry.

    Any other way to reset the admin password via the DB is also helpful, as long as it works!

  • Captain Blammo
    Captain Blammo over 13 years
    I already tried this, as mentioned in my question. PhpBB has moved to a more complicated multistage salted hashing technique in version 3, so this doesn't work :(
  • user9517
    user9517 over 13 years
    Before I posted my answer I tried it on a copy of a phpbb3 system I use for testing. Worked for me.
  • user9517
    user9517 over 13 years
    I just checked the source code. If a password is stored with the initial characters $H$ then it's in the new format and dealt with as such. If it's not in the new format then after being verified using the old methods it is silently converted to the new format.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Error:mysqld.service: Start request repeated too quickly. On manjaro
MySQL remote connection [not as usual]
mysql.sock not found, where can i find it?
Mysqldump couldn't excute show fields
Package Requires: libcurl.so.3
How to import sql file into a bash script
Cannot Start MySql
Access denied for user 'root@localhost' (using password: YES)
Access denied for user 'root'@'localhost' (using password: NO) - what's wrong?
Logging MySQL query on Ubuntu