Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implementing a more secure password hash function #5

Open
dennis-fedco opened this issue Nov 5, 2013 · 1 comment
Open

Implementing a more secure password hash function #5

dennis-fedco opened this issue Nov 5, 2013 · 1 comment

Comments

@dennis-fedco
Copy link

Learning more about password hashing I see that MD5 is no longer considered safe when it comes to password hashing. Even when adding salts. Bcrypt or a similar adaptive algorithm is a better choice. I have been looking into implementing that.

Some links:
http://stackoverflow.com/questions/11168575/why-is-md5-still-widely-used
http://stackoverflow.com/questions/4795385/how-do-you-use-bcrypt-for-hashing-passwords-in-php
http://www.php.net/manual/en/function.password-hash.php
https://github.com/ircmaxell/password_compat
http://codahale.com/how-to-safely-store-a-password/
@coolcsn
Copy link
Owner

coolcsn commented Nov 5, 2013

Yes, we know that. Our goal is to release the first version of the module, very soon. For the next release we will change the password hashing. Thank you very much for the links and the suggestion!

@itadmingrc itadmingrc mentioned this issue May 27, 2014
Open
@Truper63 Truper63 mentioned this issue Oct 14, 2015
Open
@anil7-rvce anil7-rvce mentioned this issue Mar 1, 2017
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@coolcsn @dennis-fedco