The current project page might lead a user to think that installing this module would increase the security of their stored passwords.

Since it leaves the bare md5 hashes, it in fact does not. This needs to be made much more clear on the project page and in all other documentation.

Comments

dave reid’s picture

dave reid
he/him
Primary language English
Location Nebraska USA
commented

It already says pretty clearly on the project page that "The module doesn't actually remove the md5 hashes from the database."

dave reid’s picture

dave reid
he/him
Primary language English
Location Nebraska USA
commented
Status: Active » Fixed

Status: Fixed » Closed (fixed)

Automatically closed -- issue fixed for 2 weeks with no activity.