Codeigniter TankAuth: How to move database to new server with phpass hash portable set to FALSE

Question

TankAuth uses PHPass for password hashing with portable mode set to FALSE by default that lets PHPass uses bcript instead since portable hashes does not store salt in its hash.

But, if we want to move the database to different server, we need to set it to TRUE even before adding records to table to avoid regenerating the passwords later. Evidently, keeping portable hashes TRUE makes the encrypted passwords is quite unsafe

Is there any better solution using tank auth to bcrypt the password hash yet painless database migration across servers?

I asked a similar quetion here http://stackoverflow.com/questions/5343611/portable-phpass-password-hashes-should-i-use-them see if that helps — CyberJunkie, Jun 29 '12 at 23:12

score 0 · Accepted Answer · edited May 23 '17 at 12:18

0

I think you will need to bite the bullet and turn on portable mode. It is unfortunate, but as stated in the question provided by @CyberJunkie, it's necessary.

Portable (PHPass) password hashes. Should I use them?

edited May 23 '17 at 12:18

Community

1
1

answered Oct 02 '12 at 22:34

seangates

1,467
11
28

Codeigniter TankAuth: How to move database to new server with phpass hash portable set to FALSE

1 Answers1