ENCRYPT mysql and crypt php

[kzpm]

After installing the plugin with all correct credentials for accessing database and tables, changing the password fails with the notice "INFO[DATA]: Something went wrong. Either current password is incorrect, or new password does not match criteria."

Echoing the sql statement seems a little problematic with PDO mysql, so I cannot exactly observe how the plugin is 'talking' to mysql.

My mailserver stores passwords in the mysql users table as ENCRYPT($password, CONCAT('$6$', SUBSTRING(SHA(RAND()), -16).

The plugin, however, uses crypt() and mb_strlen to compare hashes of stored passwords.
I think ENCRYPT() and the way hashes are compared in the plugin do not match ..

Maybe the ENCRYPT() function for mysql is not the right way to store password, in the context of this plugin.

One way to overcome the problem is to alter code in the plugin so it matches my criteria, however I think it is better to alter the layout of the mysql password storage.

Does anyone have suggestions for storing passwords, so it meets the conventions in the plugin?

[daufinsyd]

hello kzpm

not sure if it'll help but the 3rd example of the crypt doc from php (http://php.net/manual/en/function.crypt.php) helped me uderstanding how it works.

I just made a postgresql version and I think your problem you be on line 191:
':crypt' => crypt($sNewPassword, '$'.md5(rand()))

Try to change "$" to the corresponding hash algo (eg "$6$"). At least it worked for me.
Btw mayby yout password is catched by the regex ? !preg_match('/[^A-Za-z0-9]+/'