G
G
Grisha Nikolsky2015-10-17 22:33:38
WordPress
Grisha Nikolsky, 2015-10-17 22:33:38

How can add add any encryption method?

Hello. There is this code .
It sends the user data to the database via wp_insert_user. The password is encrypted with 32 characters. Not very reliable either. Is there any way to change or improve this encryption?

Answer the question

In order to leave comments, you need to log in

1 answer(s)
W
WP Panda, 2015-10-18
@VoxelGod

The engine stores the password in MD5.
When creating a password, it salts it and runs it through MD5 5 or 8 times.
Now people are getting more and more outraged that MD5 is no longer a Cake. And to some extent, yes, and the computing power is already such that Deep Blue blushes embarrassedly, and the hash base is also not sour.
But if the user sets a password such as the date of birth, or the name of the first girlfriend whom he gave or similar pearls, then any encryption method is powerless.
Prohibit the use of insecure passwords, add brute force protection. And that's enough for the eyes, tea is not building the site of the Federal Reserve System.
And yes, you can change the encryption algorithm itself with little bloodshed, api allows it, but due to the features of the engine, it will remain the same MD5 and the same 128 bits
You can change it with a lot of blood, but you definitely won’t be able to do it, since it was hard for you to deal with a sufficiently detailed registration.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question