Bug #15769 Updated: php-4.0 crypt("abc") != php-4.1 crypt("abc")

Thu, 28 Feb 2002 04:15:41 -0800 

 ID:               15769
 Updated by:       [EMAIL PROTECTED]
-Summary:          php-4.0 crypt("abc") != php-4.1 crypt("abc")
 Reported By:      [EMAIL PROTECTED]
 Status:           Bogus
 Bug Type:         *Encryption and hash functions
 Operating System: linux
 PHP Version:      4.1.1
 New Comment:

ok, found a solution : 
1. ./configure  [options]
2. edit main/php_config.h and set  PHP_MD5_CRYPT = 0
3. compile.


Previous Comments:
------------------------------------------------------------------------

[2002-02-28 05:44:41] [EMAIL PROTECTED]

from the docs:
> If no salt is provided, PHP will auto-generate a standard > 2
character salt by default, unless the default encryption 
> type on the system is MD5, in which case a random
> MD5-compatible salt is generated.

well, the "default encryption type" on the system has not changed
between upgrade from 4.0 to 4.1, so why does the crypt behaviour change
on the way? I really see that as a bug, or please tell me how to revert
to the "normal" crypt (DES). Saw no options in the ./configure as
well... :/

------------------------------------------------------------------------

[2002-02-28 02:09:06] [EMAIL PROTECTED]

This is not a bug. Please double-check the documentation available
at http://www.php.net/manual/ and the instructions on how to report
a bug at http://bugs.php.net/how-to-report.php

http://www.php.net/manual/en/function.crypt.php

------------------------------------------------------------------------

[2002-02-28 02:08:38] [EMAIL PROTECTED]

This is not a bug. Please double-check the documentation available
at http://www.php.net/manual/ and the instructions on how to report
a bug at http://bugs.php.net/how-to-report.php



------------------------------------------------------------------------

[2002-02-27 19:53:56] [EMAIL PROTECTED]

On the same system after upgrade, the result of crypt with only one
arguments has another format: before (php 4.0.6) it was the standard 13
chars string, and now this md5-like hash is comming:
"$1$ngOfu9A.$AoUUzzXjwxQiqKq7c2wDt1"...

Shouldn't the default behaviour of crypt() stay the same on a specific
system ? This way it breaks a lots of customers scripts on the web
server on upgrade, and this is *very* annoying. (no, I can't tell all
people: rewrite all your scripts and use 2 args with the crypt
command).

Isn't there a way to tell at compliation time: crypt() defaults to DES?
 

Regards,
Olivier 

------------------------------------------------------------------------


-- 
Edit this bug report at http://bugs.php.net/?id=15769&edit=1

Reply via email to