https://www.machform.com/forums/ MachForm Community Forums Topic: Passwords stored as plain text? en Sun, 03 May 2026 20:39:39 +0000 https://www.machform.com/forums/topic/passwords-stored-as-plain-text#post-17908 Thu, 04 Apr 2013 05:44:16 +0000 AMurray 17908@https://www.machform.com/forums/ <p>I would also be curious to know where in your database, if it is set up like the rest of ours, you are seeing plain text passwords.</p> <p>The only real/actual plain text password is in config.php in your DB configuration information section but that file can't ordinarily be opened and viewed, since it will simply execute when opened in a browser. </p> https://www.machform.com/forums/topic/passwords-stored-as-plain-text#post-17902 Wed, 03 Apr 2013 11:27:41 +0000 csamuel69 17902@https://www.machform.com/forums/ <p>I did a similar audit and did not find the password in plain text. What table did you find that in? I am using the most updated v.3.4. </p> https://www.machform.com/forums/topic/passwords-stored-as-plain-text#post-17895 Wed, 03 Apr 2013 09:50:56 +0000 yuniar 17895@https://www.machform.com/forums/ <p>In which table did you find that? The only passwords being stored by MachForm are located inside "ap_users" table and they are all encrypted already. </p> https://www.machform.com/forums/topic/passwords-stored-as-plain-text#post-17882 Mon, 01 Apr 2013 18:58:59 +0000 NiTRoN 17882@https://www.machform.com/forums/ <p>I was doing database audit and found something interesting. Account loin passwords are stores in plain text format inside database. Is it possible to encrypt the responses and just use MD5 or whatever mechanism to match them up when logging in? </p>