Difference between #6 and #9 of
Authenticating against phpass hashes with Yii

Changes

Title unchanged

Authenticating against phpass hashes with Yii

Category unchanged

How-tos

Yii version unchanged

Tags unchanged

Authentication, security

Content changed

> Note: This guide is outdated as of Yii v1.1.14 which introduced the [CPasswordHelper] class. Please use that instead.
 
 
Preface
-------
The [Portable PHP password hashing framework](http://www.openwall.com/phpass/ "phpass") allows advanced password hashing offering increased security over simple MD5- or SHA1-hashed passwords. phpass is already in use in some larger projects such as WordPress (since v2.5), Drupal 7 and phpBB 3.
[...]
{
$ph=new PasswordHash(Yii::app()->params['phpass']['iteration_count_log2'], Yii::app()->params['phpass']['portable_hashes']);
$this->password=$ph->HashPassword($this->password1);
}
return parent::beforeSave();
[...]
-----

- [How to manage a PHP application's users and passwords](http://www.openwall.com/articles/PHP-Users-Passwords)
 
- [Wikipedia (en): bcrypt](http://en.wikipedia.org/wiki/Bcrypt "[Wikipedia (en)] bcrypt")
 
- [USENIX99](http://www.usenix.org/events/usenix99/provos.html "USENIX99: A Future-Adaptable Password Scheme") - Original bcrypt proposal
22 0
28 followers
Viewed: 40 199 times
Version: 1.1
Category: How-tos
Tags: authentication, security
Written by: Da:Sourcerer
Last updated by: Da:Sourcerer
Created on: Sep 21, 2011
Last updated: 10 years ago
Update Article
Revert to #6 | Revert to #9

Revisions

View all history