Fixed the salt generation algorithm in remoting lib.

tbrehm · tbrehm · commit b5f654a2be67 · 2010-03-08T14:57:42.000Z
diff --git a/interface/lib/classes/remoting_lib.inc.php b/interface/lib/classes/remoting_lib.inc.php
@@ -492,8 +492,10 @@ function getSQL($record, $action = 'INSERT', $primary_id = 0, $sql_ext_where = '
                                                         $sql_insert_key .= "`$key`, ";
                                                         if($field['encryption'] == 'CRYPT') {
                                                                 $salt="$1$";
+																$base64_alphabet='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
 																for ($n=0;$n<8;$n++) {
-																	$salt.=chr(mt_rand(64,126));
+																	//$salt.=chr(mt_rand(64,126));
+																	$salt.=$base64_alphabet[mt_rand(0,63)];
 																}
 																$salt.="$";
 																// $salt = substr(md5(time()),0,2);
@@ -519,8 +521,10 @@ function getSQL($record, $action = 'INSERT', $primary_id = 0, $sql_ext_where = '
                                                 if($field['formtype'] == 'PASSWORD') {
 														if($field['encryption'] == 'CRYPT') {
                                                                 $salt="$1$";
+																$base64_alphabet='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
 																for ($n=0;$n<8;$n++) {
-																	$salt.=chr(mt_rand(64,126));
+																	//$salt.=chr(mt_rand(64,126));
+																	$salt.=$base64_alphabet[mt_rand(0,63)];
 																}
 																$salt.="$";
 																// $salt = substr(md5(time()),0,2);
