How are the password hashes converted to the new standard?
When a user logs in and nuBuilder discovers that the password is still in the database as an MD5 hash, nuBuilder will replace the MD5 password hash in the database with a new hash that is generated with password_hash()
To check which passwords in the database have already been converted, you can run this query:
Code: Select all
SELECT * FROM `zzzzsys_user` WHERE `sus_login_password` LIKE '%$2y$';