Submitted:10-25-2016, 10:28 PM Last Updated:11-13-2016, 02:12 PM
Info: Upgrades the login system by storing password hashes using bcrypt instead of md5 and by not rehashing the password every time a user makes a failed login attempt. Also makes login backwards-compatible with unsalted md5 login setups such that, if the salt field of the database is blank, the software will accept the md5 password hash. This plugin is backwards-compatible with MyBB md5 password hashing and will not rehash values in the database until the user changes their password. The use of hooks for this functionality was not possible, so this plugin modifies files on activation and creates backups. On deactivation, it restores the file from the oldest backup it has.
Note:
Once the passwords are hashed using Bcrypt, they cannot be unhashed obviously, so even though this plugin can be "turned off", its changes cannot be reversed unless you have a backup database. Use this at your own risk, especially since it is still in development.
Content locked
This content has been locked. Please login or register in order to unlock it.
![[Image: qq0TRP9.gif]](http://i.imgur.com/qq0TRP9.gif)
![[Image: ad0png.png]](https://i.mavis.moe/f/h89sgn995o/ad0png.png)