The default encryption method has the advantage of not require any additional libraries, but it is not very strong. It should be flagged as deprecated and removed from the list of available encryption methods.

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

rlhawk’s picture

Status: Active » Needs review

Here is a patch that flags the basic encryption method as deprecated, so it will no longer appear in the list of available methods (unless the configuration that's being viewed is using it). It also removes the test for this method.

This patch must be applied after the patch in #2418753: Provide a generic mcrypt plugin

rlhawk’s picture

Here's the patch.

rlhawk’s picture

Status: Needs review » Fixed

This was implemented in Encrypt 7.x-2.2.

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.