Search DaniWeb - phpass

PHPass Help 12 Years Ago by joshmac … another way of securing passwords. I've been thinking about phpass for a while and decided to jump in feet first… PHPass Assistance 12 Years Ago by joshmac … updated an application that I am working on to use PHPass instead of md5. I am using sessions, so when a… Re: PHPass Help 12 Years Ago by joshmac Nevermind, I figured it out. Using PHPass to login to my dashboard Incomprehensible 9 Years Ago by johnef_sh I am using PHPASS to store password encrypted and compare when login. here is … Re: Using PHPass to login to my dashboard Incomprehensible 9 Years Ago by diafol Not familiar with PHPass, Any reason you're using md5? It's generally accepted that it's past it's sell by date. Not recommended. If you have php 5.5.0+, then you may wish to consider `password_hash()` and `password_verify()` using something like BCRYPT with a "cost" of 11 or 12. Re: Using PHPass to login to my dashboard Incomprehensible 9 Years Ago by johnef_sh Thanks for reply but what to do if I am using PHP 5.3.29 any other idea thanks again Re: Using PHPass to login to my dashboard Incomprehensible 9 Years Ago by diafol Are you not able to shift your version up a few notches? >14 Aug 2014 The PHP development team announces the immediate availability of PHP 5.3.29. This release marks the end of life of the PHP 5.3 series. Future releases of this series are not planned. All PHP 5.3 users are encouraged to upgrade to the current stable version of PHP 5.5 or … Best password hashing for CMS 9 Years Ago by terryds Please tell me the best way to hash password in CMS.. I've seen Crackstation's hashing : https://crackstation.net/hashing-security.htm And phpass : http://www.openwall.com/phpass/ Please tell me which one is the best or tell me if there is another good hash method for password.. How to check login password with Wordpress 10 Years Ago by logicslab Dear pals, I am using Wordpress 3.6 for my activity logging purpose . I need to authenticate user from REST , using their username/password . But Wordpress use a framework named "phpass" . I cannot identify how to compare my given password with database table password . Please advise a method to compare it. Thanks, Anes Re: How to check login password with Wordpress 10 Years Ago by LastMitch … their username/password . But Wordpress use a framework named "phpass" . I cannot identify how to compare my given password… Re: Encryption/Decryption 12 Years Ago by mschroeder Some really good information on the subject and a hashing framework I see mentioned a lot. [url]http://chargen.matasano.com/chargen/2007/9/7/enough-with-the-rainbow-tables-what-you-need-to-know-about-s.html[/url] [url]http://www.openwall.com/phpass/[/url] Re: Beta Testers Needed 12 Years Ago by joshmac … a plethora of fixes and the replacement of md5 with PHPass with backwards compatiblity. If you are not interested in downloading… Re: Best password hashing for CMS 9 Years Ago by veedeoo Both will be good and this new [password_hash](http://php.net/manual/en/function.password-hash.php) function from PHP. Re: Best password hashing for CMS 9 Years Ago by Taywin The Crackstation gives you an explanation of do and don't. You should read the whole page and make your decision from there. In other words, you should not write your own crypto if you are not an expert in the field already. Besides, always use salt with the password when possible. Re: How to check login password with Wordpress 10 Years Ago by logicslab @LastMitch Thanks for your Quick Response . I got solution for it as wp_check_password( $password, $data['user_pass'],'') if return true it's success , else fail Thanks, Anes