On 7 August 2013 11:18, Yasuo Ohgaki <yohg...@ohgaki.net> wrote: > A user requested that crypt() should raise error without 2nd(slat) > parameter. > > https://bugs.php.net/bug.php?id=55036 > > crypt() without salt generates extremely weak password hash. >
The docs seem to indicate that some implementations generate their own random salt if one is not supplied? It doesn't seem right to raise a warning if it doesn't apply to _all_ cases.
