Project

General

Profile

Download (352 Bytes)

Feature #12863 ยป auth.patch

sha512 use 800k rounds - Phil Wardt, 03/19/2022 12:52 PM

View differences:

src/etc/inc/auth.inc
834 834 
	switch ($hashalgo) {
835 835 
		case 'sha512':
836 836 
			$salt = substr(bin2hex(random_bytes(16)),0,16);
837 
			$user['sha512-hash'] = crypt($password, '$6$'. $salt . '$');
837 
			$user['sha512-hash'] = crypt($password, '$6$rounds=800000$'. $salt . '$');
838 838 
			break;
839 839 
		case 'bcrypt':
840 840 
		default:
    (1-1/1)