So I had a look at your password hashing algorithm: md5(md5($password).$salt)
And I think its absolutely terrible that you are using MD5! That is almost as bad as storing plain text. Making it worse is that you advertise the fact that you are hashing passwords, giving buyers a false sense of security. At the very least you should be using bcrypt or PBKDF2. http://codahale.com/how-to-safely-store-a-password/ After seeing that fact, and knowing that even with a tiny bit of research you should have known about this basic security issue, I have all but totally writing off your plugin. David Neilsen | 07 834 3366 | PANmedia ® On Mon, Aug 20, 2012 at 8:45 AM, Sarah King <[email protected]> wrote: > These guys have quite the promotion team. Not that long ago they were > flogging it via the digitialpoint forums. > > > Sarah King > @itamer > p: 09 815 8642 > m: 0273 711 298 > skype: sarah.king > > > > > > On Mon, Aug 20, 2012 at 12:37 AM, Steve <[email protected]> wrote: > >> @ David >> Thanks for taking interest. We have launched 2 Plugins one is Mamba >> Plugin and the other one is Eagle Plugin. We are offering Mamba Plugin with >> 16 features for Free. You can check these 16 features here: >> http://www.mamba.getyourplugin.com/ You can download it from this link: >> http://www.getyourplugin.com/downloads/cake_php_mamba_plugin.zip >> >> All The Best. Feel Free to use this version and for Premium Version you >> can visit, http://www.eagle.getyourplugin.com >> >> >> On Monday, August 13, 2012 5:58:34 PM UTC+5:30, David Neilsen wrote: >> >>> I wouldn't so much say that there is 56 separate features. And how can >>> you boast "Clean code with formatting" (your number 1 feature) with out >>> showing us a sample of your code. >>> >>> And just out of curiosity, what algorithm do you use for your salted >>> password hashes? >>> >>> David Neilsen | 07 834 3366 | PANmedia ® >>> >>> >>> On Mon, Aug 13, 2012 at 11:55 PM, Steve <[email protected]> wrote: >>> >>>> @ Daniel >>>> Yes it does work perfectly fine with I-phone. If you are interested, >>>> let me know. >>>> >>>> >>>> On Monday, August 13, 2012 5:23:06 PM UTC+5:30, Steve wrote: >>>>> >>>>> >>>>> >>>>> On Monday, July 30, 2012 4:42:48 PM UTC+5:30, Daniel Weeks wrote: >>>>>> >>>>>> Works for me on my iPhone. >>>>>> >>>>>> On 30/07/2012, at 10:59 PM, Nick <[email protected]> wrote: >>>>>> >>>>>> I also can't login. >>>>>> There is a broken image on the login page (bottom) http://www.eagle.* >>>>>> *gety**ourplugin.com/login <http://www.eagle.getyourplugin.com/login> >>>>>> >>>>>> Nick >>>>>> >>>>>> -- >>>>>> NZ PHP Users Group: >>>>>> http://groups.google.com/**group**/nzphpug<http://groups.google.com/group/nzphpug> >>>>>> To post, send email to [email protected] >>>>>> To unsubscribe, send email to >>>>>> [email protected] >>>>>> >>>>>> >>>>> On Monday, July 30, 2012 4:42:48 PM UTC+5:30, Daniel Weeks wrote: >>>>>> >>>>>> Works for me on my iPhone. >>>>>> >>>>>> On 30/07/2012, at 10:59 PM, Nick <[email protected]> wrote: >>>>>> >>>>>> I also can't login. >>>>>> There is a broken image on the login page (bottom) http://www.eagle.* >>>>>> *gety**ourplugin.com/login <http://www.eagle.getyourplugin.com/login> >>>>>> >>>>>> Nick >>>>>> >>>>>> -- >>>>>> NZ PHP Users Group: >>>>>> http://groups.google.com/**group**/nzphpug<http://groups.google.com/group/nzphpug> >>>>>> To post, send email to [email protected] >>>>>> To unsubscribe, send email to >>>>>> [email protected] >>>>>> >>>>>> -- >>>> NZ PHP Users Group: >>>> http://groups.google.com/**group/nzphpug<http://groups.google.com/group/nzphpug> >>>> To post, send email to [email protected] >>>> To unsubscribe, send email to >>>> nzphpug+u...@**googlegroups.com >>>> >>> >>> -- >> NZ PHP Users Group: http://groups.google.com/group/nzphpug >> To post, send email to [email protected] >> To unsubscribe, send email to >> [email protected] >> > > -- > NZ PHP Users Group: http://groups.google.com/group/nzphpug > To post, send email to [email protected] > To unsubscribe, send email to > [email protected] > -- NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [email protected]
