[Security] Insecure algorithm used

Question

Closed this issue 12 years ago · 4 comments

Tthe default implementation is not secure in PHP versions < 5.3.7, see: http://www.php.net/security/crypt_blowfish.php

Answer 1 · 2013-01-12T22:26:12.000Z

have been this fixed?!

Answer 2 · 2013-01-15T10:20:04.000Z

The PR #6 fixed it, but its author didn't want to do the last step of cleaning it up.

Answer 3 · 2013-02-01T14:28:29.000Z

The author of PR #6 has (belatedly) done the last step, it's now waiting on the author of the bundle.

Answer 4 · 2013-02-05T10:02:37.000Z

It's fixed thanks to @relaxnow.