diff options
Diffstat (limited to 'lib/private/security/crypto.php')
| -rw-r--r-- | lib/private/security/crypto.php | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/private/security/crypto.php b/lib/private/security/crypto.php index 34f0d4e617d..6fdff8d92a2 100644 --- a/lib/private/security/crypto.php +++ b/lib/private/security/crypto.php @@ -52,6 +52,9 @@ class Crypto implements ICrypto { $password = $this->config->getSystemValue('secret'); } + // Append an "a" behind the password and hash it to prevent reusing the same password as for encryption + $password = hash('sha512', $password . 'a'); + $hash = new Crypt_Hash('sha512'); $hash->setKey($password); return $hash->hash($message); |