kvisnia
commented
5 years ago Hey @iamaldi
Thank you for your feedback. That hash is not being used on production, was just a fallback for the new accounts that was created. Some accounts tho may have that hash as their password, but they can't login or use it in any way. They have status 0 and our login system check status (has to be 1) and the password has to be CRYPT-SHA-256 not CRYPT.
Kostikas
Hi @kvisnia and @apavlidi and thanks for the quick response / fix. I have one question, is that password being used on production? If so, for security reasons I would suggest an immediate password change.
Thanks Aldi