]> git.p6c8.net - jirafeau/jirafeau.git/commit
git.p6c8.net / jirafeau / jirafeau.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 79464ec) | patch
Compare stored hashes for admin and download password using hash_equals() 22/head
authorPatrick Canterino <patrick@patrick-canterino.de>
Mon, 16 Jun 2025 10:13:44 +0000 (12:13 +0200)
committerPatrick Canterino <patrick@patrick-canterino.de>
Mon, 16 Jun 2025 10:13:44 +0000 (12:13 +0200)
commit8c8f88ec2104ab0a12ceec4f5a8e2ebeb72758cc
treec7ebba06a80065819d23935fb4c3572eeadabc5dtree | snapshot
parent79464ec6276e8eb0e0b0ad597db02b85080d2b63commit | diff
Compare stored hashes for admin and download password using hash_equals()

This prevents timing attacks and attacks using Type Juggling

Originally proposed by onosh
admin.php diff | blob | history
f.php diff | blob | history
Fork of Jirafeau by a group of developers after mojo42 discontinued it; main repository at https://gitlab.com/jirafeau/Jirafeau

patrick-canterino.de