Change password hashing from md5 to passowd_hash

Post Reply
perci100
User
Posts: 58

Better Security/Encryption

Post by perci100 »

Id really love the ability to use a more secure kind of password encryption , and maybe not just for the password , but something that can be used on any field to encrypt the data at rest.

Maybe Oauth for login in the choices as well?


teletee
User
Posts: 1

Post by teletee »

Dear,

For more secure login and saving password securely in MySQL database, I recommended using new feature starting from PHP 5.5 that replacing md5 hashing with password_hash function. Please check this link http://php.net/manual/en/function.password-hash.php
hint: there is a library you could use if php version 5.4 or 5.3

Regards,


perci100
User
Posts: 58

Post by perci100 »

I agree , along with a way to transfer the current pw database from md5 to the new hash. Also a way to specify what to use as the salt , random or otherwise.


Webmaster
User
Posts: 9425

Post by Webmaster »

See Tools -> Advanced Settings -> "Use password hash" in v2018 help file.


perci100
User
Posts: 58

Post by perci100 »

Awesome update , thank you !!!!


Post Reply