server-status icon indicating copy to clipboard operation
server-status copied to clipboard

Published 20 hours ago verified publisher icon server-status-project

Switch password hashing algorithm

Open Pryx opened this issue 6 years ago • 5 comments

When I implemented the password hashing and verification algorithm, I used older method of doing that. I don't know whether any of the current users use PHP < 5.5 but I haven't seen anything below 5.5 for a while that wasn't up-gradable to 5.5 or higher. Let me know if you need me to support PHP < 5.5 or if I can switch to password_hash method.

Pryx avatar Apr 14 '18 11:04 Pryx

If you switch the hashing algorithm, will you then stop emailing passwords in clear text too? Because regarding security this is a no go. https://security.stackexchange.com/questions/17979/is-sending-password-to-user-email-secure

But regardles this is a real cool project, thank you for your work!

jhuesser avatar Jun 06 '18 19:06 jhuesser

Mailing passwords is intended behavior right now, because it is only meant to be one time password (I'm pretty sure the email says that they should change it ASAP). This could be mitigated by having some checks in place - for example that the user would need to change password after first login. We could of course skip the mailing completely and have the admin give password to the user via a secure channel. What would be your preferred behavior? As this was at first intended to be only a school project I didn't give security much thought :slightly_smiling_face:

Pryx avatar Jun 06 '18 19:06 Pryx

I see :) Yeah, the email says it should be change ASAP, but unfortunately most of the users don't...

I would recommend something, that is seen quite often (eg. WordPress):

  1. admin creates new user. He can decide if the user should set the password or if the admin does.
  2. if the user sets the password a link with a token to set the password is sent to him (like the lost password function).

jhuesser avatar Jun 06 '18 19:06 jhuesser

Just a thought... Would it not make sense to follow PHP versions end of life paradigm? 5.6 will no longer be supported after 31st of Dec 2018. PHP 7.1 will be the oldest version supported after Jan 2019, so it would be normal to only support 7.1 and 7.2 from that date on...

Ref: http://php.net/supported-versions.php

thnilsen avatar Nov 20 '18 23:11 thnilsen

Yes that would make sense, I wanted the script to run everywhere and some hosting providers are pretty lazy to update PHP versions. But supporting 5.6+ would definitely make sense.

Pryx avatar Nov 21 '18 10:11 Pryx