Skype password is saved as MD5 hash in Config.xml

Similar Messages

• JPasswordField and MD5 hashes

  I have two methods to make an MD5 String from an entered password in a JPasswordField. Which one is better for security? Can anyone recommend any changes?
  * Create MD5 of password field
  * @param JPasswordField - location of the password
  * @return String - an MD5 hash of the field text
  private String getMD5(javax.swing.JPasswordField field) {
      java.security.MessageDigest md;
      String passwdString = "";
      char[] passwdChars = field.getPassword();
      int i;
      field.setText("");
      // char[] to string and blank out chars
      for (i = 0; i < passwdChars.length; i++) {
          passwdString += passwdChars;
  passwdChars[i] = 0; // blank after for security
  try {
  md = java.security.MessageDigest.getInstance("MD5");
  } catch (java.security.NoSuchAlgorithmException e) {
  return null;
  byte[] passwdMD5 = md.digest(passwdString.getBytes());
  passwdString = "xxxxxxxxxxxxxxxxxxxxxxxxx"; // security
  return dumpBytes(passwdMD5);
  * Create MD5 of password field
  * @param JPasswordField - location of the password
  * @return String - an MD5 hash of the field text
  private String getMD5a(javax.swing.JPasswordField field) {
  java.security.MessageDigest md;
  String MD5;
  try {
  md = java.security.MessageDigest.getInstance("MD5");
  } catch (java.security.NoSuchAlgorithmException e) {
  return null;
  MD5 = dumpBytes(md.digest(new String(field.getPassword()).getBytes()));
  field.setText("");
  return MD5;
  * Byte[] to String conversion
  * @param byte[]
  * @return String
  private static String dumpBytes(byte[] bytes) {
  int i;
  StringBuffer sb = new StringBuffer();
  for (i=0; i<bytes.length; i++) {
  if (i%32 == 0 && i!=0) {
  sb.append("\n");
  String s = Integer.toHexString(bytes[i]);
  if (s.length() < 2) {
  s = "0"+s;
  if (s.length() > 2) {
  s = s.substring(s.length()-2);
  sb.append(s);
  return sb.toString();

  Thanks for the replies.
  Unfortunately I can't get the charsToBytes function to work. For example, if you run the following code you can see that it doesn't seem to give me the correct md5 (if you to to http://pajhome.org.uk/crypt/md5/ and calculate the MD5 for 'test' you will see that function getMD5a works but not getMD5b):
  public class test {
      public static void main(String args[]) {
          new test();
      public test() {
          char[] chars = {'t','e','s','t'};
          System.out.println("Method a: "+getMD5a(chars));
          System.out.println("Method b: "+getMD5b(chars));
      private String getMD5a(char[] passwd) {
          java.security.MessageDigest md;
          String MD5;
          try {
              md = java.security.MessageDigest.getInstance("MD5");
          } catch (java.security.NoSuchAlgorithmException e) {
              return null;
          MD5 = dumpBytes(md.digest(new String(passwd).getBytes()));
          return MD5;
      private String getMD5b(char[] passwd) {
          java.security.MessageDigest md;
          String MD5;
          try {
              md = java.security.MessageDigest.getInstance("MD5");
          } catch (java.security.NoSuchAlgorithmException e) {
              return null;
          MD5 = dumpBytes(md.digest(charsToBytes(passwd)));
          return MD5;
      public static byte[] charsToBytes(char[] chars) {
          byte[] bytes = new byte[chars.length*2];
          int b,c;
          for (b = 0, c = 0; c < chars.length; c++, b+=2) {
              bytes[b] = (byte)((chars[c] >> 8) & 0xFF);
              bytes[b+1] = (byte)(chars[c] & 0xFF);
          return bytes;
      public static String dumpBytes(byte[] bytes) {
          int i;
          StringBuffer sb = new StringBuffer();
          for (i=0; i<bytes.length; i++) {
              if (i%32 == 0 && i!=0) {
                  sb.append("\n");
              String s = Integer.toHexString(bytes);
  if (s.length() < 2) {
  s = "0"+s;
  if (s.length() > 2) {
  s = s.substring(s.length()-2);
  sb.append(s);
  return sb.toString();

• Migrate users from qmail to sun messaging  (import MD5 hashed passwords)

  Hi,
  we are planning to migrate about 2000 users from our current mail system (qmail + openldap) to Sun Messaging 6.2.
  We have encountered a problem with user password migration. In our current ldap user passwords are MD5 encrypted, but it appears as Directory 5.2 does not support MD5 encryption method.
  This is what I have found :
  http://docs.sun.com/source/817-7616/config.html#wp26092
  The following encryption types are supported by Directory Server:
  * SSHA (Salted Secure Hash Algorithm) is the recommended method as it is the most secure.
  * SHA (Secure Hash Algorithm). This is the method supported by 4.x Directory Servers.
  * CRYPT is the UNIX crypt algorithm. It is provided for compatibility with UNIX passwords.
  * If this attribute is set to CLEAR, passwords are not encrypted and appear in plain text.
  We want to import MD5 hashed passwords so users can use their old password after we migrate to SUN, but as passwords are updated they will be SSHA hashed.
  We only have a problem with importing MD5 hashed passwords in ldap directory.
  Current password on openLDAP are created with the following PHP code:
  $info["userPassword"]= '{md5}' . base64_encode(pack('H*', md5($passwd)));
  I have tried to copy userpassword value from openldap to directory but the directory ignores {md5} and hashed the string again using SSHA.
  Example:
  cleartextpass: password
  md5_base64_hash={MD5}X03MO1qnZdYdgyfeuILPmQ==
  after ldap modify userpassword field loks like this:
  userpassword:{SSHA}a+dFsejrTGwQAgdU07kkgzWWOC16SiIW2UsPcQ==
  What is the correct procedure to import MD5 hashed passwords in Sun Directory?
  (NS-MTA-MD5 Password Storage Plug-In is enabled)

  Sun Directory 5.2 has a plugin NT-MTA-MD5 which should enable users to authenticate with MD5 hashed passwords.
  I have checked in cn=config and NS-MTA-MD5 plugin is enabled.
  I have tried with {NS-MTA-MD5} prefix and still directory does not allow users to authenticate.
  Example:
  cleartextpass: foo
  md5_base64_hash={NS-MTA-MD5}rL0Y20zC+Fzt72VPzMSk2A==
  after ldap modify userpassword field loks like this( NS-MTA-MD5 is accepted by directory):
  userpassword:{NS-MTA-MD5}rL0Y20zC+Fzt72VPzMSk2A==
  but
  ldap bind fails with "invalid credentials" error
  We are using solaris 10 so I tried using the prefix {crypt} and it did not work. You said something about the right config in /etc/security/crypt.conf. Here is the content of my crypt.conf file:
  1 crypt_bsdmd5.so.1
  2a crypt_bsdbf.so.1
  md5 crypt_sunmd5.so.1
  This should be the right config "md5 crypt_sunmd5.so.1"
  Am I missing something here?
  Is there anything else I need to do to enable directory to use MD5 hashed passwords?
  Maybe NS-MTA-MD5 plugin is not enough?

• Why can't I delete a user name and password from saved passwords in iOS 7?

  Why can't I delete a user name and password from saved passwords in iOS 7? I found them and they are not anything that I am familiar with? They are from a t-com.de. I have been to Germany in the last month. Not sure if there is any association. Any thoughts? 

  You found them ... where?  Are they in Safari somewhere?
  If so, do Settings > Safari > Clear History and Settings > Safari > Clear Cookies and Data
  If that doesn't clear them (and they are from Safari), try Settings > Safari > Advanced > Website Data and clear that area.

• When a password is saved it should be sent to my mail because when OS or Firefox crashes I lose all my password saved by your browser

  I like firefox and I use it as my favorite browser.
  When my Operating system crashes or browser crashes, I am losing my saved passwords which is creating me a lot of trouble.
  So, whenever a password is saved, I like firefox to generate amail for me stating URL, username and password.
  Kindly add this feature immediately and save people like me

  In the address bar, type '''about:crashes'''<enter>.''' Note:''' If any reports do not
  have '''BP''' in front of the numbers, click it and select '''Submit'''.
  Using your mouse, '''mark''' the most '''resent 7 - 10''' crash reports, and
  '''copy''' them. Now go to the reply box below and '''paste''' them in.
  These can't get your data back, but will help in the future.
  These add-ons can be a great help by backing up and restoring Firefox
  '''[https://addons.mozilla.org/en-US/firefox/addon/febe/ FEBE (Firefox Environment Backup Extension)]''' {web link}
  FEBE allows you to quickly and easily backup your
  Firefox extensions, history, passwords, and more.
  In fact, it goes beyond just backing up -- It will actually rebuild
  your saved files individually into installable .xpi files.
  It will also make backup of files that you choose.
  '''[https://addons.mozilla.org/en-US/firefox/addon/opie/ OPIE]''' {web link}
  Import/Export extension preferences

• My facebook password is saved, but I changed it and the old password automaticly inserts, I need to change it.

  I changed my password for facebook. The old password was saved and automatically filled in each time I log into facebook. The old password still fills in and I need to know how to change it to the new one.

  Tools -> Options -> Security -> Saved Passwords.
  On the list of sites select http://www.facebook.com (you should see your FB user name in the right column). Select "Remove". Login to FB with your new password and click "Remember password" when asked.

• Let me reset my ----- SKYPE ---- password

  Okay so I don't know what the hell is going on with this messed up useless system you have going on here, but I got locked out of skype for some insane reason since I didn't change my password (hell it stopped on autoload!). And when I go to get my password reset by sending the email to my linked account...
  It resets my microsoft password!
  Seriously WTF. They use different passwords! Why in the flaming hell would resetting my microsoft password help? If signing in with it that way worked, sure, but that option hasn't worked since it's been installed. Let me reset my damed skype password please for gods sake!

  Same problem here.

• The selected signed file could not be authenticated. The file might have been tampered with or an error might have occured during download. Please verify the MD5 hash value against the Cisco Systems web site

  I am trying to load any 9.0.3 firmware on my UCM 5.0.4.2000-1 server. Every newer firmware I load throws the following error. I have verified the MD5 is correct and also downloaded the file several times with the same result. I can load the same firmware file on another UCM server and it loads fine. Any ideas?
  Thanks in advance!
  Error Message:
  The selected signed file could not be authenticated. The file might have been  tampered with or an error might have occured during download. Please verify the  MD5 hash value against the Cisco Systems web site:  9b:b6:31:09:18:15:e7:c0:97:9f:e6:fe:9a:19:94:99
  Firmware File: cmterm-7970_7971-sccp.9-0-3.cop.sgn
  UCM version: 5.0.4.2000-1

  Thanks for your reply. We have a lab environment where I maintain  UCM 5.0, 5.1, 6.0, 6.1, 7.0, 7.1 and 8.0 servers each running the latest released firmware for our QA testing team. I have downloaded and installed the latest device packages but find that if I try to install any firmware newer then 8.3.1 on either 5.0.4 or 6.0 i start getting MD5 hash authentication errors. It looks like 9.0.3 firmware should work on UCM 5.0 and 6.0 so I am lost as to why I can't seem to update any firmware for any model phone if it is newer then version 8.3.1 on either 5.0 or 6.0. while 5.1 and 6.1 work without issues. Maybe it is just a bug. I mostly wanted to see if anyone else has experienced this or if it is just me.

• MD5 hash code in PLSQL

  Hi everyone,
  I am building dynamic web pages using Oracle's plsql web
  toolkit. I am building a page that will pass information to a
  credit card authorizer. I need to create a MD5 hash string to
  pass to the credit card company. Is there an Oracle built in
  procedure/function/package to generate a MD5 hash string? If
  not, can anyone recommend a good reference source for generating
  a MD5 hash code in a plsql environment.
  Thanks.
  Dave W.

  This is from the Object API; I think it has the information that explains what's happening (but doesn't resolve your apparent problem)
  public int hashCode()
  Returns a hash code value for the object. This method is supported for the benefit of hashtables such as those provided by java.util.Hashtable.
  The general contract of hashCode is:
  Whenever it is invoked on the same object more than once during an execution of a Java application, the hashCode method must consistently return the same integer, provided no information used in equals comparisons on the object is modified. This integer need not remain consistent from one execution of an application to another execution of the same application.
  If two objects are equal according to the equals(Object) method, then calling the hashCode method on each of the two objects must produce the same integer result.
  It is not required that if two objects are unequal according to the equals(java.lang.Object) method, then calling the hashCode method on each of the two objects must produce distinct integer results.
  However, the programmer should be aware that producing distinct integer results for unequal objects may improve the performance of hashtables.
  As much as is reasonably practical, the hashCode method defined by class Object does return distinct integers for distinct objects. (This is typically implemented by converting the internal address of the object into an integer, but this implementation technique is not required by the JavaTM programming language.)

• Keychain: What happened to "passwords not saved"?

  I was about to answer this question by directing the user to Keychain Access, where he could find the relevant website and simply delete it.
  For as long as I've known, if you tell a website to never save passwords for it, Safari would create a Keychain entry with the website URL along with the note "passwords not saved". From that moment on, Safari would not ask if you'd like to save the password. The Keychain entry was self-explanatory; if you asked Keychain to show the password the field would be blank.
  So, I checked my Keychain for the several secure financial websites where I store various amounts of the enormous Galt wealth all over the globe. They're not in Keychain any more - they're gone completely!
  I suspect this happened when I updated Safari from 4.0.4 to 4.0.5, since I got the familiar popup "Keychain has been updated" etc.
  Something must tell Safari not to ask to store a password for a particular website, and without a Keychain entry, it can't be the Keychain, right? So what is it now? A cookie?

  Thanks, BD, this makes sense to me, though I can't seem to find a Login keychain I think I understand what's going on now.
  The difficulty seems to be function of how Safari interacts with secure websites, and that's changed with Safari's evolution. At one time Safari would give you the option of saving names and passwords no matter what. They were stored in Safari's Autofill preferences while the actual passwords were stored in the Keychain. Later, it appears that Safari began to honor a secure website's request to not even do that, so I'm never given the choice. Those Keychain entries disappeared.
  Firefox behaves differently still. At least one secure website will not allow Safari to autofill, but the same one will autofill with Firefox. It requires a ridiculously secure, non-memorable password, such as U*ng%!+{&.4 - you know, the kind you have to write on a Post-It note stuck to your monitor since it expires every 36 hours. It's a government website and by definition, stupid. For that one I use Firefox.
  I would surmise that if the internet standards allow for a choice, Apple is taking the more secure route.
  So, some websites, even though their address starts with https:// allow Safari to store names and passwords. I surmise that some do not; for those Safari will not even give you the option. I was looking for those in my Keychain - now they're gone, and I guess that's the way it's going to be!
  You deserve a by the way, but I had clicked "Helpful" before I unraveled this mystery. Sorry!

• Don't have Skype password, can't login

  I'm trying to login to skype, I know my name but don't know the password.  I clicked the button to recover the password which reset my Microsoft account password (?)  Now I can log into my Microsoft account, but then it asks me for my Skype password to link the accounts which I don't have.
  I tried to recover the SKYPE password a second time and it says that I can only do that once every 24 hours.
  Help?

  Every mail account has a password. So lets start at the beginning.
  Have you added your account to Thunderbird?
  Do you know the email password issued by your mail provider? If not ask them!

• Cisco ISE NTP MD5 hash is 20-Bytes?

  When attempting to configure an NTP authentication-key in the Cisco ISE CLI I noticed that it will not accept an md5 hash of 32 characters (16 bytes). Instead it is expecting a 40 character (20 bytes) hash. That is in line with a SHA-1 hash, not an MD5 hash even though there is no SHA-1 keyword, only an MD5 keyword.
  What's the deal?
  Cisco ISE Version: 1.1.2.145 (Update 3)
  ise/user(config)# ntp authentication-key 75 ?
    md5  MD5 authentication
  ise/user(config)# ntp authentication-key 75 md5 hash ?
    <WORD>  Hashed key for authentication (Max Size - 40)
  ise/user(config)# ntp authentication-key 75 md5 hash 12345678901234567890123456789012
  % ERROR: Bad hashed key.
  ise/user(config)# ntp authentication-key 75 md5 plain test
  ise/user(config)# do show run | i md5
  ntp authentication-key 75 md5 hash 97dc37c94236ec1b4c56871c2e482cbd6f56bd33
  That's not an MD5 hash as it's 40 characters long (20 bytes).

  Hmm, that is an interesting observation. I am guessing that it is a typo and should be "sha-1" because 40 characters is definitely not MD5 :)
  I would suggest you open a case with Cisco TAC and report this. If you get a bug ID or a different answer please let us know. 
  Thank you for rating helpful posts!

• DBMS_CRYPTO MD5 hash value does not match 3rd party MD5 free tool

  Hello,
  I am using Oracle Version: 11.2.4.
  I have a problem where the MD5 value from DBMS_CRYPTO does not match the hash value from 3rd party MD5 free tool (MD5 Checksum Calculator 0.0.5.58 or WinMD5Free v1.20) and also the MD5 hash value calculated by an ingestion tool where I am transferring files to. The MD5 hash value that the ingestion tool calculates is the same as the 3rd party MD5 free tools I have. This occurs only on some of the XML files that I generate using XSQL(xmlserialize, xmlagg, xmlelement, etc.) and DBMS_XSLPROCESSOR on a Linux OS. The XML files are transferred from the Unix OS to my Windows 7 OS via filezilla.
  I found a thread on this forum that also had a similar issue so I copy/paste the java functions. They are listed below(both are the same expect for the character set):
  create or replace java source named "MD5_UTF_8" as
  import java.security.MessageDigest;
  import java.security.NoSuchAlgorithmException;
  import java.sql.Clob;
  import java.sql.Blob;
  public class MD5_UTF_8 {
  private static final byte [] hexDigit = {
  '0','1','2','3','4','5','6','7','8','9','A','B','C','D','E','F'
  /** Converts a byte array to a hex string
  * Returns an empty string if the byte array is null
  public static final String toHexString(byte [] bytes) {
  if (bytes == null) return new String("");
  StringBuffer buf = new StringBuffer(bytes.length * 2);
  for (int i = 0; i < bytes.length; i++) {
  buf.append((char) hexDigit[((bytes >>> 4) & 0x0F)]);
  buf.append((char) hexDigit[(bytes & 0x0F)]);
  return buf.toString();
  // Convert Hex String to Byte Array
  public static final byte[] byteArrayFromHexString(String str) {
  byte[] bytes = new byte[str.length() / 2];
  for (int i = 0; i < bytes.length; i++)
  bytes = (byte) Integer.parseInt(str.substring(2 * i, 2 * i + 2), 16);
  return bytes;
  public static String getMD5HashFromClob(Clob inhalt) throws Exception{
  MessageDigest algorithm;
  StringBuffer hexString;
  String s = null;
  String salida = null;
  int i;
  byte[] digest;
  String tepFordigest = inhalt.getSubString(1L, (int)inhalt.length());
  try {
  algorithm = MessageDigest.getInstance("MD5_UTF_8");
  algorithm.reset();
  algorithm.update(tepFordigest.getBytes("UTF-8"));
  digest = algorithm.digest();
  s = toHexString(digest);
  } catch (java.security.NoSuchAlgorithmException nsae) {
  s = "No es posible cifrar MD5";
  return s;
  sho err
  alter java source "MD5_UTF_8" compile
  sho err
  CREATE OR REPLACE FUNCTION get_md5_UTF_8_CLOB(inhalt CLOB) RETURN VARCHAR2 DETERMINISTIC
  AS LANGUAGE JAVA
  name 'MD5_UTF_8.getMD5HashFromClob(java.sql.Clob) return java.lang.String';
  create or replace java source named "MD5" as
  import java.security.MessageDigest;
  import java.security.NoSuchAlgorithmException;
  import java.sql.Clob;
  import java.sql.Blob;
  public class MD5 {
  private static final byte [] hexDigit = {
  '0','1','2','3','4','5','6','7','8','9','A','B','C','D','E','F'
  /** Converts a byte array to a hex string
  * Returns an empty string if the byte array is null
  public static final String toHexString(byte [] bytes) {
  if (bytes == null) return new String("");
  StringBuffer buf = new StringBuffer(bytes.length * 2);
  for (int i = 0; i < bytes.length; i++) {
  buf.append((char) hexDigit[((bytes >>> 4) & 0x0F)]);
  buf.append((char) hexDigit[(bytes & 0x0F)]);
  return buf.toString();
  // Convert Hex String to Byte Array
  public static final byte[] byteArrayFromHexString(String str) {
  byte[] bytes = new byte[str.length() / 2];
  for (int i = 0; i < bytes.length; i++)
  bytes = (byte) Integer.parseInt(str.substring(2 * i, 2 * i + 2), 16);
  return bytes;
  public static String getMD5HashFromClob(Clob inhalt) throws Exception{
  MessageDigest algorithm;
  StringBuffer hexString;
  String s = null;
  String salida = null;
  int i;
  byte[] digest;
  String tepFordigest = inhalt.getSubString(1L, (int)inhalt.length());
  try {
  algorithm = MessageDigest.getInstance("MD5");
  algorithm.reset();
  algorithm.update(tepFordigest.getBytes());
  digest = algorithm.digest();
  s = toHexString(digest);
  } catch (java.security.NoSuchAlgorithmException nsae) {
  s = "No es posible cifrar MD5";
  return s;
  sho err
  alter java source "MD5" compile
  sho err
  CREATE OR REPLACE FUNCTION get_md5_CLOB(inhalt CLOB) RETURN VARCHAR2 DETERMINISTIC
  AS LANGUAGE JAVA
  name 'MD5.getMD5HashFromClob(java.sql.Clob) return java.lang.String';
  I created the above java functions and added the calls to them in my package to see what hash values they would produce but I am getting "ORA-29532: Java call terminated by uncaught Java exception: java.nio.BufferOverflowException " the XML is about 60mb.
  package code sniippets:
  declare
  l_hash raw(2000);
  l_checksum_md5 varchar2(2000);
  l_checksum_md5_utf_8 varchar2(2000);
  Begin
  t_checksum := lower(RAWTOHEX(dbms_crypto.hash(src=>l_clob,typ=>dbms_crypto.hash_md5)));
  l_hash := get_md5_CLOB (l_clob);
  l_checksum_md5 := lower(rawtohex(l_hash));
  l_hash := get_md5_UTF_8_CLOB (l_clob);
  l_checksum_md5_UTF_8 := lower(rawtohex(l_hash));Please help,
  Thank You in advance
  Don
  Edited by: 972551 on Nov 21, 2012 12:18 PM
  Edited by: sabre150 on Nov 21, 2012 11:06 PM
  Moderator action : added [code ] tags to format properly. In future please add them yourself.

  >
  I have a problem where the MD5 value from DBMS_CRYPTO does not match the hash value from 3rd party MD5 free tool (MD5 Checksum Calculator 0.0.5.58 or WinMD5Free v1.20) and also the MD5 hash value calculated by an ingestion tool where I am transferring files to. The MD5 hash value that the ingestion tool calculates is the same as the 3rd party MD5 free tools I have.
  I found a thread on this forum that also had a similar issue so I copy/paste the java functions.
  >
  And in that thread (Re: MD5 HASH computed from DBMS_CRYPTO does not match .NET MD5 I provided the reason why DBMS_CRYPTO may not match hashes produced by other methodologies.
  I have no idea why you copied and posted all of that Java code the other poster and I provided since code has NOTHING to do with the problem you say you are having. Thte other poster's question was how to write Java code that would produce the same result as DBMS_CRYPTO.
  You said your problem was understanding why DBMS_CRYPTO 'does not match the hash value from 3rd party MD5 free tool ...'. and I answered that in the other forum.
  >
  The Crypto package always converts everything to AL32UTF8 before hashing so if the .NET character set is different the hash will likely be different.
  See DBMS_CRYPTO in the PL/SQL Packages and Types doc
  http://docs.oracle.com/cd/B28359_01/appdev.111/b28419/d_crypto.htm
  If you look at the spec header for the DBMS_CRYPTO package it shows this note:
  -- Prior to encryption, hashing or keyed hashing, CLOB datatype is
  -- converted to AL32UTF8. This allows cryptographic data to be
  -- transferred and understood between databases with different
  -- character sets, across character set changes and between
  -- separate processes (for example, Java programs).
  -- If your 3rd party MD5 free tool (MD5 Checksum Calculator 0.0.5.58 or WinMD5Free v1.20) do not use the AL32UTF8 character set then the hashes will likely be different. You can't modify DBMS_CRYPTO so if the hashes need to match you need to use 3rd party tools that either use the correct character set or can be configured to use the correct character set.
  The problem in the other thread was how to WRITE Java code that uses the correct character set and I showed that OP how to do that.
  So unless you are writing your own Java code all of that code you copied and pasted is useless for your use case.

• Passwords not saved in iCloud Keychain

  Passwords not saving in iCloud Keychain. Does it requires to be on same id

  Please read this whole message before doing anything.
  This procedure is a diagnostic test. It won’t solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
  The purpose of this test is to determine whether the problem is localized to your user account. Enable guest logins* and log in as Guest. Don't use the Safari-only “Guest User” login created by “Find My Mac.”
  While logged in as Guest, you won’t have access to any of your documents or settings. Applications will behave as if you were running them for the first time. Don’t be alarmed by this behavior; it’s normal. If you need any passwords or other personal data in order to complete the test, memorize, print, or write them down before you begin.
  Test while logged in as Guest. Same problem?
  After testing, log out of the guest account and, in your own account, disable it if you wish. Any files you created in the guest account will be deleted automatically when you log out of it.
  *Note: If you’ve activated “Find My Mac” or FileVault in OS X 10.7 or later, then you can’t enable the Guest account. The "Guest User" login created by "Find My Mac" is not the same. Create a new account in which to test, and delete it, including its home folder, after testing.

• When i go into history to delete everything but when i go to type site it comes up and name and password are saved i want to delete all this but cannot

  Question
  when i go into history to delete everything but when i go to type site it comes up and name and password are saved i want to delete all this but cannot edit

  Quote from the article.
  Time Machine in OS X Lion includes a new feature called "local snapshots" that keeps copies of files you create, modify or delete on your internal disk. Local snapshots compliment regular Time Machine backups (that are stored on your external disk or Time Capsule) giving you a "safety net" for times when you might be away from your external backup disk or Time Capsule and accidentally delete a file.
  So what makes a notebook any different then a desktop, other then with a desktop you might have your tm backup drive connected all the time.
  The object here is to not indiscriminately delete files you need or want to keep. I personally have never deleted a file I wanted to keep.
  In essence a backup is for catastrophic failure of your system. So it can be restored once that failure has been fixed. Not because you go in willy nilly and start deleting files.