1.6.3 released to fix password compatibility between phpBB and WordPress
-
= 1.6.3 = *Release Date - 22 Feb, 2017* * Fix correct password check/set between phpBB and WordPress. All WordPress passwords are now hashed (and checked if required) as phpBB bcrypt(). Once the integration will be uninstalled, WP users with passwords containing certain chars, will have to reset their password to correctly login into WordPress.
-
p.s it has not be mentioned but, it is obvious that if an old users with password changed in WP profile (by user or admin) or created/registered in WP, BEFORE 1.6.3, may have to reset his password, to have it updated working on both phpBB and WP.
If the password was not containing certain chars, by the way it will result compatible without any password update.
This point, about different algorithm hashes that return hash compatible and recognized, if password aren’t containing certain chars, is still really obscure to me. I should take a really hard deep look into … but before to become crazy, i will ask for curiosity elsewhere, and also here.
Anybody know, why if we hash a password using phpass, and the same with bcrypt:
if password is like: aaxxee1234)(
recognized on both with their respective check() method.
if password is like: aaxxee£$^&”‘1234)(
is not recognized.
But i guess someone will explain me why in the first case is recognized, and in the second no!
The topic ‘1.6.3 released to fix password compatibility between phpBB and WordPress’ is closed to new replies.
