Ten Fingers And A Brain » dovecot

Ten Fingers And A Brain » dovecot http://ten-fingers-and-a-brain.com Martin Lormes on Wordpress, PHP, Nagios, XML, FileMaker, BlackBerry, Arduino Sun, 15 Jan 2012 19:13:09 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 {SSHA} Salted SHA1 with PHP http://ten-fingers-and-a-brain.com/2009/08/ssha-php/?utm_source=rss&utm_medium=rss&utm_campaign=ssha-php http://ten-fingers-and-a-brain.com/2009/08/ssha-php/#comments Sun, 02 Aug 2009 19:36:25 +0000 Martin Lormes http://ten-fingers-and-a-brain.com/2009/08/ssha-php/

I was in need of a PHP class to ~~encrypt~~ hash and verify passwords using salted sha1 hashes. Here it is, quick but not too dirty:

<?php

class SSHA
{

  public static function newSalt()
  {
    return chr(rand(0,255)).chr(rand(0,255)).chr(rand(0,255)).chr(rand(0,255));
  }

  public static function hash($pass,$salt)
  {
    return '{SSHA}'.base64_encode(sha1($pass.$salt,true).$salt);
  }

  public static function getSalt($hash)
  {
    return substr(base64_decode(substr($hash,-32)),-4);
  }

  public static function newHash($pass)
  {
    return self::hash($pass,self::newSalt());
  }

  public static function verifyPassword($pass,$hash)
  {
    return $hash == self::hash($pass,self::getSalt($hash));
  }

}

]]> http://ten-fingers-and-a-brain.com/2009/08/ssha-php/feed/ 0