Salt on password change
|Reported by:||SGr33n||Owned by:|
In my opinion it may be useful to change the user salt every password change.
It happened that I imported some users and some MD5 passwords without salt.
It works but when users changed their passwords, the salt code was still null.
Change History (4)
comment:1 Changed 4 years ago by marcus
- Priority changed from major to minor
- Type changed from defect to enhancement
comment:3 Changed 4 years ago by SGr33n
- Resolution fixed deleted
- Status changed from closed to reopened