Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
Khurshed Abdujalil2018-02-11 15:06:41
PHP
Khurshed Abdujalil, 2018-02-11 15:06:41

Why doesn't the crypt function work correctly?

it so happened that the project got, where the password is encoded through the crypt function. Having tested, I found a bug, if it can be considered so.

$salt = substr('test123', 0, 2);

        echo (crypt('testtest123', $salt)).'<br>';
        echo (crypt('testtest', $salt)).'<br>';
        echo (crypt('testtest1', $salt)).'<br>';

all three have the same result, that is, if someone enters the password testtest or testtest1 for a specific user with the password testtest123, then he will be authorized without any problems. Is this function crookedly working or what?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
I
Ivanq, 2018-02-11
@akhur

By default, the DES algorithm is used, that is, only the first 8 characters are processed, and they are the same.
https://stackoverflow.com/questions/20875703/why-i... You
can use a salt of the form $6$сольиз16символов($6$ - SHA512) instead.

Similar questions
B
Belavor2019-09-24 17:46:58
How to change time zone from server to user? 3Reply
V
Viktor2016-07-11 03:11:20
Many categories in Wordpress, long loading time? 0Reply
A
artyglitch2020-10-08 10:03:30
Execute a callback after changing the style attribute via JS on an element? 3Reply
D
Dagtor2015-05-15 14:02:52
What book, website or video course can you offer a beginner to learn SQL? 11Reply
D
davin4u2016-07-14 11:34:07
How to optimize MySQL query and is it necessary? 5Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question