AppGini Community Forums

A place where AppGini users can exchange ideas and help each other.
https://forums.appgini.com:443/phpbb/

Insecure Crypto Algo

https://forums.appgini.com:443/phpbb/viewtopic.php?f=11&t=4918

Page 1 of 1

Insecure Crypto Algo

Posted: 2022-10-17 06:32
by nisar
It is observed that insecure Crypto Algo md5 is found which is not suitable for secure crypto algorithm. Please let us know about to change the Crypto Algorithm.

Re: Insecure Crypto Algo

Posted: 2022-10-17 09:37
by jsetzer
Hi,

just for your information:
PHP's password_hash()function does not return md5 but BCRYPT (CRYPT_BLOWFISH).

(1) You were probably confused by the fact that the encrypted value is stored in a database field named "passMd5". The name of the database field is irrelevant.

(2) The id-attribute of a DOM element in HTML is not security-relevant, I think.

Possibly duplicate of
viewtopic.php?f=11&t=4919
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/