Using Mhash Instead Of Php Crypt

Yii Framework Forum: Using Mhash Instead Of Php Crypt - Yii Framework Forum

Page 1 of 1

You cannot start a new topic
You cannot reply to this topic

Using Mhash Instead Of Php Crypt Rate Topic:

#1 jackprobe

Newbie

Group: Members
Posts: 8
Joined: 16-May 13

Posted 17 May 2013 - 11:50 AM

Hi,

I am new to Yii. Is it possible to change the encryption from php crypt() to mhash() for using in password in Yii ?

If yes, how to do that ?

Thanks

#2 RSfTDL

Junior Member

Group: Members
Posts: 49
Joined: 22-June 12

Posted 17 May 2013 - 12:07 PM

Hi!

What about the Portable PHP password hashing (PHPASS)? You can read this wiki to know how to use it on Yii and also you can check the Openwall site.

#3 Da:Sourcerer

Master Member

Group: Members
Posts: 778
Joined: 30-March 11
Location:Berlin, Germany

Posted 17 May 2013 - 01:14 PM

Well, user authentication (including password validation) is entirely in the application author's hands. So yes, you can use the mhash extension for that, although it's not recommended as it seems to be deprecated since PHP 5.3. The bcrypt method mentioned by RSfTDL is certainly more future-proof.

programmer /ˈprəʊgramə/, noun: a device that converts ►coffee into ►code

#4 jackprobe

Newbie

Group: Members
Posts: 8
Joined: 16-May 13

Posted 21 May 2013 - 07:12 AM

RSfTDL, on 17 May 2013 - 12:07 PM, said:

Hi!

What about the Portable PHP password hashing (PHPASS)? You can read this wiki to know how to use it on Yii and also you can check the Openwall site.

Thank you RsfTDL & Da:sourcerer. I'll take a look at the link.

Thanks