Change password hashing from md5 to passowd_hash

Better Security/Encryption

Postby perci100 » Mon Jan 09, 2017 6:30 pm

Id really love the ability to use a more secure kind of password encryption , and maybe not just for the password , but something that can be used on any field to encrypt the data at rest.

Maybe Oauth for login in the choices as well?
perci100
 
Posts: 53
Joined: Wed Sep 24, 2014 5:45 am

Change password hashing from md5 to passowd_hash

Postby teletee » Wed Apr 12, 2017 6:44 pm

Dear,

For more secure login and saving password securely in MySQL database, I recommended using new feature starting from PHP 5.5 that replacing md5 hashing with password_hash function. Please check this link http://php.net/manual/en/function.password-hash.php
hint: there is a library you could use if php version 5.4 or 5.3

Regards,
teletee
 
Posts: 1
Joined: Wed Apr 12, 2017 6:26 pm

Re: Change password hashing from md5 to passowd_hash

Postby perci100 » Tue Apr 18, 2017 3:10 pm

I agree , along with a way to transfer the current pw database from md5 to the new hash. Also a way to specify what to use as the salt , random or otherwise.
perci100
 
Posts: 53
Joined: Wed Sep 24, 2014 5:45 am

Re: Change password hashing from md5 to passowd_hash

Postby Webmaster » Fri Jul 28, 2017 11:59 am

See Tools -> Advanced Settings -> "Use password hash" in v2018 help file.
Webmaster
 
Posts: 10730
Joined: Fri Aug 06, 2004 5:59 pm

Re: Change password hashing from md5 to passowd_hash

Postby perci100 » Tue Aug 15, 2017 11:05 pm

Awesome update , thank you !!!!
perci100
 
Posts: 53
Joined: Wed Sep 24, 2014 5:45 am


Return to Feature Requests (PHPMaker)