sha1 issues

[GoogleCodeExporter]

editprofile.php and login.php both use
sha1(clean($password))
register.php and recover.php both use
sha1($password)

Original issue reported on code.google.com by dbrown29@gmail.com on 25 Feb 2009 at 10:20

[GoogleCodeExporter]

clean() only needs to be run when things could possibly be unclean. 
register.php and
recover.php sha1() generated passwords, which by construction are clean. so 
clean()
isn't necessary.

Original comment by lucasreddinger on 25 Feb 2009 at 5:36

• Changed state: Invalid