Joomla! Discussion Forums

I think you have seen my post http://forum.joomla.org/index.php/topic,15594.msg97860.html#msg97860I forget my Admin Password, How to reset/get it? I follow you instruction to set all the possible field using phpmyadmin, but still I am getting message such as you cannot log in, no administrator has been set.
Please let me know what to do? By the way do I need something to put in ACTIVATION filed of table jos_users, if so what?

THanks

Sounds like you deleted your admin user.

See this post on how to add an admin user.
http://forum.joomla.org/index.php/topic ... l#msg74944

DISCUSSION THREAD from  Recover Admin Password

please feel free to discuss on this thread of this FAQ.

While in phpadmin you can also view the username and email values. You can then copy/paste these into the 'forgot password login' box on your front end. (Assuming you have this module enabled, if you don't feel like playing around with MD5's.) Great tut Ken!

does this work with 1.0.8?

Yes it works with 1.08 - logged in correctly now.

Surprised (and also security concerned) at how easy this was to do.

i have MD5 hashed password but i don't know what is the password is ..

here is the MD5 password :

fe01ce2a7fbac8fafaed7c982a04e229

how i can convert it to understandable password so i can write it on password box ?

Why don't you try the three that were there? and then once you are in, change the password from the user manager? This is how I did it, or use the link on the help page to create a new one?

FYI, MD5 is "one-way" - you can't convert the hash back into the original password, by design. You'll have to find some other approach to your problem.

^^thats is absolutely NOT TRUE.
just a little note from a super newbie like me


there ARE  md5 hashed to unhashed tools.
this will take a lot of cpu power to do
google around and look for "**** ***" (its right on the top of the list.

careful with privacy laws my young Jedi
make sure you wil be unhashing your own password and NOT others.

- g



SELF EDIT: edited the firt post for SECURITY reasons and "privacy laws" compliance.
if you want to have the tool i first posted,.. google around and look for it.
sorry.. dont want to take the risk in giving you leads for it

fe01ce2a7fbac8fafaed7c982a04e229 in md5 is:
demo
in unhashed. just a simple example that hashed md5 can be converted to unhashed

- g

Ah, my bad. I should have been reading slashdot (or wikipedia), not the RFC.

I get the impression that MD5 is still hard to crack if a strong password is used (long, mixed case, special characters, non-dictionary). Is that still correct?

hard to crack, YES.
uncrackable, NO.

- g

on the non-dictionary, yeah thats a good element also HOWEVER, most crackers will do a BRUTE FORCE approach right from the start rather than a dictionay approach.

- g

guilliam , thank you

why you call it crack ?

is this mean i crack my own website .. hell no .. i just want to disable the md5 or know how to unhash it as you do ..  still don't know how you make it ..  i wish i know .. please tell me guilliam . thank you again .

crack or cracking is hard to define word nowadays since crackers are always related or have the connotation of hacking.
however based on my newbie knowledge it is called "cracking" and tools and users who does this craft are commonly called "crackers".

how to do it,.. you can do it  MANUALLY,.. the baisc CONCEPT and foundation of password cracking is simply "trial and error". so when you do this trial and error lets say you try putting in the right PW from a to z, thats already cracking. that a to z is a non complex,.. however scripts and apps are there to provide this automatically for you.
i just cant imagine 12 characters of a-z and i will do it manually. lolz.


^^no you are not cracking your website. you are cracking the hashed MD5 of the PW to get the unhashed value.


^^as mentioned above try googling around. sorry, i edited my post on giving everyone leads. though those apps are legal, the usage may not. so try looking around what tools can be used for that. there are actually a lot of cracking tools out there. md5, base64, access db, cisco type-7, cisco pix, RSA secureID token,.. etc.. you name it.. those tools must be just out there sitting for you to use

- g 

I restored joomla database and now locked out of the administrator area.

It says, "Incorrect username, Password or Access Level, please try again."

I've tried adding admin user, resetting the password to known hashed password, it does not work.

What are my options here?

Thanks!

Never mind. Fixed by replacing the vBridged supplied joomla files with the backups.

Note to self: Never use or download gz backup files (databases) from cpanel...never.

@Chucky, guess that really sometimes happen.

- g

My password doesn't seem to be working either.  I downloaded both of the suggested programs and can't figure out how to get into the data base with either of them.  It's local on my computer if that helps.  Can anyone explain how to fix this in a somewhat simple manner?

never mind, I figured it out.  I have no clue how, but I did 

Hi guys.

I'm having a similair problem.
I can access my FTP, and in there I can find my login name and pw, but they wont allow me to log into Joomla!

I've read the instructions above, but my problem seems different. I can't get a hashed password to de-hash. I have the correct pw, but it wont work.
Any tips out there? I'm about to give up on this prog. It's caused me more stress and work than it would be to just use Dreamweaver

Thanks a lot to anyone who can offer advice on this. If I can get it to work I'll be so happy!

Thank-you    - btw - this still works for v. 1.5 !

I'm new and need help - I just installed but the person helping me lost the admin password.  I'm trying to recover it as instructed using MD5 but I don't see the options for the admin user in my setup - please go here to see my MySQL control panel.  I'm lost - any help is appreciated.
http://www.stmonicahs.org/mysql.jpg

LMWallace -

Sorry for the delay in a response; I have been offline for over a week. If, in the future, you do not get a response in a day, or so, and you really need to get an answer (as is the case, here), feel free to email me or swing by my website and drop a line.

It appears that somehow you have lost your admin ID. Here is a post that will help you with that problem: < http://forum.joomla.org/index.php/topic ... l#msg74944 >.

Again, sorry for the delay. Hopefully, you are well beyond this problem anyway!
Amy

One thing I strongly suggest is immediately everyone create a SECOND super administrator for double protection!

Rowby
http://www.rowby.com

Thanks very much, that did the trick!

If you have access to phpmyadmin for instance, all you have to do is open the jos_users table, edit the admin user, write the new password (in clear text) in the password field and select MD5 from he functions list to the left of the password field.

Press save, and you have a brand new password with an MD5 hash.

... what are your opinions on "forgot password"-functionality on the backend login? "Out of sight, out of mind"?

and even easier:
http://www.yoursite.com/index.php?optio ... n&Itemid=1
...use the forgot password function from there

Seems to work in both 1.0 and 1.5.

hi guys, please help.
I forgot my admin password, and  tried to change the password through phpmyadmin many times.
currently, i saw on the jos_user db the password = c3284d0f94606de1fd2af172aba15bf3
went to http://pajhome.org.uk/crypt/md5/
tried to unhashed, then the result: 77e2edcc9b40441200e31dc57dbb8829
still unable to access :-(
pls help to generate the password. thanks alot