http://www.dotnetnuke.com/tabid/795/Default.aspxDiscussions of DotNetNuke for ASP.NET 1.x and above. <a href="http://www.dotnetnuke.com/" target="_blank">DNN Home</a> <a href="http://aspadvice.com/SignUp/list.aspx?l=105&c=25" target="_blank">Email List</a>enCommunityServer 2007 SP1 (Build: 20510.895)http://forums.asp.net/thread/392206.aspxWed, 12 Nov 2003 20:20:34 GMT4c671506-2930-414c-a40b-8bf57ded5924:392206BrettK0http://forums.asp.net/thread/392206.aspxhttp://forums.asp.net/commentrss.aspx?SectionID=90&PostID=392206I attempted to download this off the url you specified but it isa not working? Can you conform this and let me know where I could acquire the download? <br /> <br /> Thankshttp://forums.asp.net/thread/366028.aspxTue, 14 Oct 2003 15:52:05 GMT4c671506-2930-414c-a40b-8bf57ded5924:366028weinstein_josh0http://forums.asp.net/thread/366028.aspxhttp://forums.asp.net/commentrss.aspx?SectionID=90&PostID=366028Timothy, <br /> This is a great enhancement, but I just realized something - in its current state I am unsure how it would work with 2.0 b/c this Enhancement utilitizes SQL User Defined Functions which don't exist in Access. As you are aware, the DNN 2.0 version will support both Data stores - so we will need to come up with a way to get rid of the SQL UDF's and possibly get that into a code behind or use the built-in ASP.NET MD5 capabilities (if possible). <br /> <br /> Thoughts?http://forums.asp.net/thread/365960.aspxTue, 14 Oct 2003 15:10:43 GMT4c671506-2930-414c-a40b-8bf57ded5924:365960weinstein_josh0http://forums.asp.net/thread/365960.aspxhttp://forums.asp.net/commentrss.aspx?SectionID=90&PostID=365960Timothy, <br /> Great enhancement. I am currently evaluating it to get it into a future version of DNN. <br /> <br /> <br /> <br /> <br />http://forums.asp.net/thread/364528.aspxMon, 13 Oct 2003 08:08:27 GMT4c671506-2930-414c-a40b-8bf57ded5924:364528Salaro0http://forums.asp.net/thread/364528.aspxhttp://forums.asp.net/commentrss.aspx?SectionID=90&PostID=364528Cool stuff Timothy <br /> <br /> You keep coming up with these great ideas. <br /> <br /> Keep them coming <br /> <br /> Salar <br />http://forums.asp.net/thread/361518.aspxThu, 09 Oct 2003 13:54:25 GMT4c671506-2930-414c-a40b-8bf57ded5924:361518timothymo0http://forums.asp.net/thread/361518.aspxhttp://forums.asp.net/commentrss.aspx?SectionID=90&PostID=361518DNN 1.0.10c Core Enhancement: implement MD5 secured login without SSL <br /> <br /> Features: Will provide MD5 secured login without SSL enabled. <br /> <br /> Download Link: http://www.softtalk.com.sg/md5login.zip <br /> <br /> Why this is needed: Hackers can sniff your connection for outgoing packets. If your password is in clean text, your site can be easily hacked as DNN's admin is purely web based. <br /> <br /> What does this MD5 login do: it basically encrypts your password with a salt generated from server before sending to server for authentication. So even if someone is sniffing your connection, he will get an encrypted string (with salt!). According to today's computing power, it is not possible to decrypt the string. <br /> <br /> Credits: This enhancement uses the Javascript from Paj (http://pajhome.org.uk/crypt/md5/), Sql UDF from Rambo Qian. <br /> <br /> Changes: <br /> - signin.aspx: add javascript function hashPassword(), add ref to Paj's MD5 javascript. <br /> - signin.aspx.vb: create salt, pass salt to Security.UserLogin(). <br /> - Security.vb: Change UserLogin function to accept one more optional parameter &quot;Salt&quot; <br /> - Stored Procedure &quot;UserLogin&quot;: change to accept one more parameter &quot;Salt&quot;, change the login logic to process clean login and encrypt login. <br /> - create UDF MD5 in MS SQL database. <br /> <br /> Install: <br /> - unzip the download file <br /> - run MD5.udf.sql in QA <br /> - modify your UserLogin stored procedure with UserLogin.sp.sql <br /> - modify the 3 files accordingly <br /> - add md5.js into &quot;/javascript&quot; folder <br /> <br /> Enjoy DNN! <br /> <br /> Regards, <br /> Timothy MO (mojiazho@{}{NO___SP+++AM}{}yahoo.com)