crypt without the use of salt

Asked

Viewed 60 times

0

There is a system in PHP that was not developed by me, it uses crypt to encrypt the user’s password, thus:

$senha = crypt($senha);

With the PHP update on the server, crypt is asking for a salt when creating the password for new users.

The problem is that there are already more than 10 thousand users registered in the system without salt. If I start to include salt now, I will have problems with the login of old users because they have no salt.

What to do?

  • You can post the code snippet?

  • According to PHP documentation salt é uma string opcional para base da encriptação. Se não fornecido, será gerado randomicamente pelo PHP cada vez que chamar esta função.

No answers

Browser other questions tagged

You are not signed in. Login or sign up in order to post.