I though I could give it a try...

Well I had problems finding people who could help at all. So I am back, I coded my own php script this time. Looks nothing like fusion because it is NOT, just look at it. Elite Hacks I was also wondering if anyone could hack the login box (hit enter to get to it), if you can please tell me how.

[[Richo fixed url tag]]

yeah just so you know your missing a '>' in your form

<form action="main.php" METHOD="POST">
Password: <input type='text' name='pass'>
<input type='submit' value='<ENTER>'
</form>

should be

<form action="main.php" METHOD="POST">
Password: <input type='text' name='pass'>
<input type='submit' value='<ENTER>'>
</form>```

Thanks for that. So can you hack it?

… No one has posted, anything relevant…

look, you can't just "hack a login box". you can exploit the underlying code, however. show us the php source to the page if you're really worried, unless the password is hardcoded into the page, in which case there's really no point.

Afterthought: The only thing I can really see wrong with it is that you're only providing a single key for authentication, which means it could be bruteforced pretty fast.

I know, I don't really care atm I am just trying to make a login forum for a game (more like cpyher and slavehack) an I was just wondering if any of you could get the hardcoded pass with out bruting.

no, not without something like an LFI on the site.

Okay sweet. Does anyone know how to get the database to remember what users exist and then when they click <login> it will check the database and see if credentials exist (Please tell me if you do not understand what I mean, I am not real sure what its called)?

Thanks rico

masta_hacks wrote: Thanks rico

…..wtf?

I think he meant about the link thing mate.

ahhh righto… hate to misspell my name….

masta_hacks wrote: Does anyone know how to get the database to remember what users exist and then when they click <login> it will check the database and see if credentials exist

I'm no SQL expert, but to learn this you could read any SQL manual ;)

RICO! :p

masta_hacks wrote: Does anyone know how to get the database to remember what users exist and then when they click <login> it will check the database and see if credentials exist (Please tell me if you do not understand what I mean, I am not real sure what its called)?

Google about the basics of a mysql login and such and browse php.net for some ideas ;) You can always PM me for some sample code.

It may be better, to validate your code after each update. Like this, or this.

Not to sound rude or anything, but theres no mysql in the code atm. I am needing some help on that…

masta_hacks wrote: Not to sound rude or anything, but theres no mysql in the code atm. I am needing some help on that…

Have you tried the W3schools SQL tutorial, or the google results? If you need help ask specific questions instead of these very basic crappy questions. We ain't google y'know.

I know, but I do not know what it is called that I am trying to do :(

its called having a database and using mysql. :)

http://www.google.com/search?hl=en&safe=off&q=PHP+MySQL+login&btnG=Search

The end.

mr noob wrote: its called having a database and using mysql. :)

isn't that overkill for what he's trying to do? though I suppose, it would help to actually KNOW what he's trying to do. =\