View Single Post
  #5  
Old 28th April 2010, 21:53
mike_p mike_p is offline
Senior Member
 
Join Date: Mar 2010
Location: Surrey, England
Posts: 140
Thanks: 9
Thanked 28 Times in 17 Posts
Default

Quote:
Originally Posted by till View Post
The passwords in ispconfig are encrypted with "crypt" and a salt, thats the standard encryption on all Linux systems and ISPConfig uses this too.
Now I'm confused!
Looking at the source code in
/usr/local/ispconfig/interface/web/client/client_edit.php

I see
Code:
$sql = "UPDATE sys_user SET passwort = md5('$password') WHERE client_id = $client_id";
That suggests that the system users' passwords are encrypted by mysql applying md5??
Reply With Quote