PHP-PasswordLib
PHP-PasswordLib copied to clipboard
ircmaxell
A library for generating and validating passwords
This uses openssl_random_pseudo_bytes. This is suggested for use only with with php5-openssl compiled against LibreSSL: OpenSSL copying RNG state on fork: https://github.com/ramsey/uuid/issues/80#issuecomment-188286637 Fixed in LibreSSL: http://opensslrampage.org/post/91910269738/fix-for-the-libressl-prng-issue-under-linux Additionally, CVE-2015-8867 was fixed...
Composer install fails due to following error: "PasswordLib/PasswordLib": "*" does not exist use "PasswordLib/PasswordLib": "dev-master" instead
Hi, Is PBKDF2 as binary (having the last parameter of hash_pbkdf2 function as true) stronger and more recommended than hexit? And 1000 iteration is reasonable or still weak?
I have SHA-256 hashes with a salt of 9 characters. According to what I understand, the spec allows this. However, the library doesn't detect / verify hashes in this format.
Unix crypt SHA256/SHA512 are using the wrong alphabet for salts. First some changes to the tests to show that the current implementation is broken. Then the fixes.
Hello. I have created a class that utilizes the RNG capabilities of PasswordLib in order to generate version 4 UUIDs. I am sending you this "pull request" just to make...
... If the prefix exceeds this, the returned string never contains any added entropy, nor can it ever grow passed 255 bytes trapping us in an infinite loop if we...
I noticed the "Supported Random Number Sources" text appeared broken - this fixes it.
