K, so I'm using crypt() to hash my passwords as that seems to be the latest and greatest advice circulating on the net. OK, no problem this I'm doing as luckily my production server supports 5.3 ... Well I have my own VPS so upgrading wouldn't be an issue except it's got a lot of other crapola on there which needs to be backwards compatible.
But I got a few queries. If I was to move to a different server but copy the same db over of the hashs already generated would it still decrypt the password properly. I read somewhere that the hash it uses depends on the server it is on. Would there be any portability issues?
The other concern is, I don't quite get how it works per se. Do you need to salt it? How do you know the algo it uses by default is strong enough.
Lastly, I'm using this in CodeIgniter. I don't think it should be an issue as I am using this as a standalone function... But is that safe to do so?