https://bugzilla.wikimedia.org/show_bug.cgi?id=28419
--- Comment #27 from Daniel Friesen <mediawiki-b...@nadir-seen-fire.com> 2012-03-26 06:37:59 UTC --- Looking at the spec for PBKDF2 and some other implementations this looks a little off: > substr( base64_encode( $hash ), 0, $wgPasswordLength ) The substr is supposed to be done on the raw $hash, not on the base64 output. This could output a different hash than a standard PBKDF2 implementation would. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list Wikibugs-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
