User passwords not working since 2.5.8 update

[bAsH]

Hello, my users have strange passwords since update, like "$%ÈCÒô" !!

Please help me

[Matt]

They should look like that in the database. They are encrypted. They should still work however.

 

Matt

[s1rk3ls]

I just tested a new order for a VPS, and the password was comprised of these characters - meaning when the client receives their welcome email, the password will be messed up there also. I understand it being encrypted in the database, but how can I provide the signup information without recreating a new password for them?

[Matt]

You should never see a password like that except for when they are in the database.

 

Matt

[MACscr]

I have seen a decent amount of posts about password issues, can you confirm that this is not a bug? I havent upgraded yet and would like to wait if there are any existing bugs.

[s1rk3ls]

When a customer signs up for a VPS, it asks them for a root password - which I need to know in order to create the account for them. When I view the account in whmcs, the password is the encrypted value. I have tried creating another account the same way, and the problem is replicated.

[Matt]

To answer MACscr's question, there is one bug with passwords and that involves the root password entered during signup. There are no other bugs with the passwords. Root password issue will be resolved in the download within the next 15 minutes.

 

Matt

[s1rk3ls]

I just also noticed a similar issue with a hosting account - the order is pending, and when I activate it to have the account created automatically in WHM, the password field in WHMCS is showing the encrypted value.

 

Will this be resolved in the same update also?

[Matt]

No, there is no issue with password encryption in that location. The only areas affected by password errors resulting in them not being encrypted in the initial V2.5.8 release is on the client signup and root password fields.

 

[EDIT] These are now corrected.

 

Matt

[MACscr]

So your saying that admins wont be able to view users password anymore? Why isnt the root password encrypted?

[Matt]

No, that's not what I'm saying. All passwords are encrypted in 2.5.8 in the database. The admin can view all of them via the Admin Area just like they have been able to in all previous versions. There is no noticable change to you as an admin or your end users.

 

Matt

[MACscr]

ah, ok. sorry, I havent seen any of these issues myself, I was just going off what was reported by other users. I havent upgraded yet.