pashword-hashing ohne Aufruf von externem Programm (87e0de8) - webinterface.git

@@ -31,23 +31,13 @@ function get_mailaccount($id)
   return $ret;
 }
 
-/*
-  FIXME: Hier auch die crypt-Funktion nehmen wie beim systemuser-Passwort
-*/
 function encrypt_mail_password($pw)
 {
   DEBUG("unencrypted PW: ".$pw);
-  $descriptorspec = array(
-    0 => array("pipe", "r"),
-    1 => array("pipe", "w")
-    );
-  $process = proc_open("/usr/local/bin/exec/userdbpw -md5", $descriptorspec, $pipes);
-  fwrite($pipes[0], $pw);
-  fclose($pipes[0]);
-  $encpw = fgets($pipes[1]);
+  require_once('inc/base.php');
+  $salt = random_string(8);
+  $encpw = crypt($pw, "\$1\${$salt}\$");
   DEBUG("encrypted PW: ".$encpw);
-  fclose($pipes[1]);
-  proc_close($process);
   return chop($encpw);
 
 }


...	...	@@ -31,23 +31,13 @@ function get_mailaccount($id)
31	31	return $ret;
32	32	}
33	33
34		-/*
35		- FIXME: Hier auch die crypt-Funktion nehmen wie beim systemuser-Passwort
36		-*/
37	34	function encrypt_mail_password($pw)
38	35	{
39	36	DEBUG("unencrypted PW: ".$pw);
40		- $descriptorspec = array(
41		- 0 => array("pipe", "r"),
42		- 1 => array("pipe", "w")
43		- );
44		- $process = proc_open("/usr/local/bin/exec/userdbpw -md5", $descriptorspec, $pipes);
45		- fwrite($pipes[0], $pw);
46		- fclose($pipes[0]);
47		- $encpw = fgets($pipes[1]);
	37	+ require_once('inc/base.php');
	38	+ $salt = random_string(8);
	39	+ $encpw = crypt($pw, "\$1\${$salt}\$");
48	40	DEBUG("encrypted PW: ".$encpw);
49		- fclose($pipes[1]);
50		- proc_close($process);
51	41	return chop($encpw);
52	42
53	43	}
54	44