[wp-trac] [WordPress Trac] #21022: Use bcrypt for password hashing; updating old hashes
WordPress Trac
noreply at wordpress.org
Wed Feb 19 15:26:36 UTC 2025
#21022: Use bcrypt for password hashing; updating old hashes
-------------------------------------------------+-------------------------
Reporter: th23 | Owner:
| johnbillion
Type: enhancement | Status: reopened
Priority: normal | Milestone: 6.8
Component: Security | Version: 3.4
Severity: normal | Resolution:
Keywords: has-patch needs-testing has-unit- | Focuses:
tests has-dev-note |
-------------------------------------------------+-------------------------
Comment (by jorbin):
> scenarios where a user downgrades their WordPress version
There is only one supported version of WordPress at a time. I don't think
we need to be worrying about downgrade situations since we don't want to
encourage folks to use an unsupported version of WordPress. Additionally,
as long as password resets work, people will not be locked out of their
site.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/21022#comment:227>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list