search

shrimpza / outofeve

Out of Eve is a web application which allows you to keep complete track of your EVE Online characters and corporations, when you're not in-game.
https://www.outofeve.com/
7 stars 4 forks source link

Password security #38

Closed shrimpza closed 8 years ago

shrimpza commented 8 years ago

Currently, user passwords are stored as a plain MD5 hash which is painfully insufficient, and should be revised to include a salt, and use a better hashing algorithm.

shrimpza commented 8 years ago

Using the PHP implementation found at https://github.com/defuse/password-hashing