You need to move away from md5 as it has been rainbow tabled to death. You should really be using sha256 at the minimum. If you’re using PHP 5.5 then there are some new functions that make dealing with hashing and salts easier. If you’re using PHP 5.4 or earlier there’s a backwards compatible library (don’t have the link to it to hand)
1 Like