Benutzer SHA512 wenn möglich (e890486) - webinterface.git

@@ -175,8 +174,17 @@ function set_systemuser_password($uid, $newpass)
 {
   $uid = (int) $uid;
   require_once('inc/base.php');
+  if (defined("CRYPT_SHA512") && CRYPT_SHA512 == 1)
+  {
+    $rounds = rand(1000, 5000);
+    $salt = "rounds=".$rounds."$".random_string(8);
+    $newpass = crypt($newpass, "\$6\${$salt}\$");
+  }
+  else
+  {
     $salt = random_string(8);
     $newpass = crypt($newpass, "\$1\${$salt}\$");
+  }
   db_query("UPDATE system.passwoerter SET passwort='$newpass' WHERE uid='".$uid."' LIMIT 1");
   logger(LOG_INFO, "session/checkuser", "pwchange", "changed user's password.");
 }


...	...	@@ -175,8 +174,17 @@ function set_systemuser_password($uid, $newpass)
175	174	{
176	175	$uid = (int) $uid;
177	176	require_once('inc/base.php');
	177	+ if (defined("CRYPT_SHA512") && CRYPT_SHA512 == 1)
	178	+ {
	179	+ $rounds = rand(1000, 5000);
	180	+ $salt = "rounds=".$rounds."$".random_string(8);
	181	+ $newpass = crypt($newpass, "\$6\${$salt}\$");
	182	+ }
	183	+ else
	184	+ {
178	185	$salt = random_string(8);
179	186	$newpass = crypt($newpass, "\$1\${$salt}\$");
	187	+ }
180	188	db_query("UPDATE system.passwoerter SET passwort='$newpass' WHERE uid='".$uid."' LIMIT 1");
181	189	logger(LOG_INFO, "session/checkuser", "pwchange", "changed user's password.");
182	190	}
183	191