Aren’t we supposed to be better than this?

From the recent hacking:

The password is salted and encrypted (with crypt)

This is what I expect out of the PHP community.

Website Pin Facebook Twitter Myspace Friendfeed Technorati Digg Google StumbleUpon Premium Responsive

Bookmark the permalink.

One Response to Aren’t we supposed to be better than this?

  1. Dave Cross says:

    This is, of course, the problem of using off the shelf software for services like this. It’s very tempting to stick with the software’s default encryption techniques.

    More worrying is the Movable Type documentation’s assertion that:

    Because the password is one-way encrypted, there is no way of recovering the initial password.

    We’ll be looking at a way to strengthen that encryption.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.