Our customer web hosting servers are running a version of Apache older than 2.4, so there is no support for bcrypt encryption of passwords in .htpasswd files. I think the SHA- based options should still be supported....
I am able to choose the encryption algorithm for my password, but the only one of the provided choices that seems to be considered secure is Bcrypt. However, the web page tells me it's supported on Apache versions 2.4 or later and when I use this algorithm on my web site it fails. Only if I use an algorithm that is supposedly insecure ("Apache specific salted MD5") can I get my .htpasswd to work.
So, does this mean Sonic is running an earlier version of Apache than 2.4?
...
-- Joe M
Statistics: Posted by joemuller — Mon Jan 06, 2025 11:12 am