Hi Hannes,
On Thu, Aug 8, 2013 at 1:22 PM, Hannes Magnusson wrote:
> On Wed, Aug 7, 2013 at 6:20 PM, Yasuo Ohgaki wrote:
> > Hi all,
> >
> > It seems there are 2 options for master branch when crypt()'s 2nd
> parameter
> > is omitted.
> >
> > - raise E_DEPRECIATED that advice use of stronger s
On Wed, Aug 7, 2013 at 6:20 PM, Yasuo Ohgaki wrote:
> Hi all,
>
> It seems there are 2 options for master branch when crypt()'s 2nd parameter
> is omitted.
>
> - raise E_DEPRECIATED that advice use of stronger salt or password_hash()
>and make 2nd parameter required for future release.
>
Hi all,
It seems there are 2 options for master branch when crypt()'s 2nd parameter
is omitted.
- raise E_DEPRECIATED that advice use of stronger salt or password_hash()
and make 2nd parameter required for future release.
- make crypt() use stronger default salt/hash w/o error
Since pas
Hi!
> A user requested that crypt() should raise error without 2nd(slat)
> parameter.
>
> https://bugs.php.net/bug.php?id=55036
>
> crypt() without salt generates extremely weak password hash. In addition to
> this,
I see that when I run crypt with one parameter, it generates salted
password ha
Yasuo,
Hi all,
>
> A user requested that crypt() should raise error without 2nd(slat)
> parameter.
>
> https://bugs.php.net/bug.php?id=55036
>
> crypt() without salt generates extremely weak password hash. In addition to
> this,
> PHP 5.5 has password_hash()
>
> This change should be applied from
Hi Yasuo
2013/8/7 Yasuo Ohgaki :
> Hi all,
>
> A user requested that crypt() should raise error without 2nd(slat)
> parameter.
>
> https://bugs.php.net/bug.php?id=55036
>
> crypt() without salt generates extremely weak password hash. In addition to
> this,
> PHP 5.5 has password_hash()
>
> This ch
On 07/08/13 13:00, Leigh wrote:
On 7 August 2013 11:18, Yasuo Ohgaki wrote:
A user requested that crypt() should raise error without 2nd(slat)
parameter.
https://bugs.php.net/bug.php?id=55036
crypt() without salt generates extremely weak password hash.
The docs seem to indicate that some i
On 7 August 2013 11:18, Yasuo Ohgaki wrote:
> A user requested that crypt() should raise error without 2nd(slat)
> parameter.
>
> https://bugs.php.net/bug.php?id=55036
>
> crypt() without salt generates extremely weak password hash.
>
The docs seem to indicate that some implementations generate
Hi all,
A user requested that crypt() should raise error without 2nd(slat)
parameter.
https://bugs.php.net/bug.php?id=55036
crypt() without salt generates extremely weak password hash. In addition to
this,
PHP 5.5 has password_hash()
This change should be applied from 5.5, IMHO.
Any comments?
