Ryan Satterfield : Elgg.org

Ryan Satterfield

- Ryan Satterfield@ActorRyan
Ryan Satterfield replied on the discussion topic Changing ELGG default password encryption from md5 -- reverse compatibility issues 4145 days ago

The elgg code is at engine/lib/users.php . My code to improve their code is right here. They always return md5, but instead I use the hash function and return sha512. I am sure they will say that isn't as secure as blowfish, but that is an area of... view reply
- Ryan Satterfield@ActorRyan
Ryan Satterfield added a new discussion topic Changing ELGG default password encryption from md5 -- reverse compatibility issues in the group Feedback and Planning 4145 days ago

I know Elgg is planning to upgrade the password encryption in a release sometime in the near future, but I can't release my site with md5. My site focuses on security and using md5 is so insecure. I really do not want to release my site using...
- DhrupDeScoop@Dhrup2000
  
  DhrupDeScoop 4143 days ago
  @LOGIN`ACTION:
                                   // before elgg's stuff
     // try phppass first
     $return=(\phppass_authenticate($username,$password));
     if($return){              // ok & phppass re-hash already
         return true
     }else{
         $return=elgg_authenticate($username,$password)
         if($return){          // ok - now re-hash using phppass
             //re-hash & save
             $rehash=phppass_rehash($username,$password))
         }
             return true
     }
     return false
     function phppass_authenticate($username,$password)){
         ...
     }
     function phppass_rehash($username,$password)){
         ...
     }
- Planet Zuda@planetzuda
  
  Planet Zuda 4143 days ago
  Sem: I will message you.
- al@alelggcommunity
  
  al 3574 days ago
  
  Please can anybody say what the current status on this issue is?
  Thank you
+13 more
- Ryan Satterfield@ActorRyan
Ryan Satterfield joined the group Feedback and Planning 4145 days ago
- Ryan Satterfield@ActorRyan
Ryan Satterfield joined the group General Discussion 4240 days ago

Ryan Satterfield

Group membership

Feedback and Planning

General Discussion

Activity

Friends

Send private message

Navigation

Contact

Legal