When you create the site (using start.php), you have the option to add encryption or not.
To turn it on, you set $BOLTcrypt = 'randomvalue'; in index.php before calling BoltWire. This will invalidate all your existing password. You could conceivably write a custom script to encrypt all your current passwords if you have a large number of existing files and don't want to have people reset them all. Cheers, Dan On Mon, Feb 8, 2016 at 6:36 AM TMurNGon <tmurn...@gmail.com> wrote: > Hi Dan, > > I notice that passwords are not being hashed, but rather stored as plain > text in member pages. > > Have I neglected some setting? > > Thanks. > Jan > > -- > You received this message because you are subscribed to the Google Groups > "BoltWire" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to boltwire+unsubscr...@googlegroups.com. > To post to this group, send email to boltwire@googlegroups.com. > Visit this group at https://groups.google.com/group/boltwire. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "BoltWire" group. To unsubscribe from this group and stop receiving emails from it, send an email to boltwire+unsubscr...@googlegroups.com. To post to this group, send email to boltwire@googlegroups.com. Visit this group at https://groups.google.com/group/boltwire. For more options, visit https://groups.google.com/d/optout.