diff options
| author | Karl 'vollmerk' Vollmer <vollmer@ampache.org> | 2008-10-30 17:17:27 +0000 |
|---|---|---|
| committer | Karl 'vollmerk' Vollmer <vollmer@ampache.org> | 2008-10-30 17:17:27 +0000 |
| commit | 0a08d312b72650162b1ef58cb1068634b7552964 (patch) | |
| tree | f62bb3fcef8ba326b514f5b8cf3046935ba88859 /lib/class/vauth.class.php | |
| parent | dac46f0b6e8e4d5dff51b3f5b97f6cc5332f7b88 (diff) | |
| download | ampache-0a08d312b72650162b1ef58cb1068634b7552964.tar.gz ampache-0a08d312b72650162b1ef58cb1068634b7552964.tar.bz2 ampache-0a08d312b72650162b1ef58cb1068634b7552964.zip | |
move to sha256 for passwords API and Interface
Diffstat (limited to 'lib/class/vauth.class.php')
| -rw-r--r-- | lib/class/vauth.class.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/class/vauth.class.php b/lib/class/vauth.class.php index b9aeee6a..e9fa7f68 100644 --- a/lib/class/vauth.class.php +++ b/lib/class/vauth.class.php @@ -490,8 +490,8 @@ class vauth { return $response; } - // Use SHA1 for the password, we aren't using SHA2 because Amarok can't handle it *cry* - $password = hash('sha1',$password); + // Use SHA2 now... cooking with fire, SHA3 in 2012 *excitement* + $password = hash('sha256',$password); $sql = "SELECT `username`,`id` FROM `user` WHERE `password`='$password' AND `username`='$username'"; $db_results = Dba::read($sql); |