Ballast Security Hashing Reviews, Downloads & Maintenance

Back to plugins

Homepage WordPress

Actions

Download Author page See on WordPress

Plugin info

Total downloads: 2,562

Active installs: 10

Total reviews: 0

Average rating: 0

Support threads opened: 0

Support threads resolved: 0 (0%)

Available in: 1 language(s)

Contributors: 1

Last updated: 9/6/2012 (4864 days ago)

Added to WordPress: 7/24/2012 (13 years old)

Minimum WordPress version: 2.0.2

Tested up to WordPress version: 3.4.2

Minimum PHP version: f

Maintenance & Compatibility

Maintenance score

Possibly abandoned • Last updated 4864 days ago

20/100

Is Ballast Security Hashing abandoned?

Possibly abandoned (last update 4864 days ago).

Compatibility

Requires WordPress: 2.0.2

Tested up to: 3.4.2

Requires PHP: f

Ratings

0 See all reviews

Developers

BallastSecurity (Owner)1

Languages

Similar & Alternatives

Explore plugins with similar tags, and compare key metrics like downloads, ratings, updates, support, and WP/PHP compatibility.

No similar plugins found yet.

See more alternatives to Ballast Security Hashing

Description

This plugin seamlessly changes your stored password hash to a far stronger one. The hash that it is changed to is
generated with a variety of variations on PBKDF2, including my own ARC4PBKDF2 which adds custom ARC4 encryption
during the hashing processs, then a SHA-1 to meet size constraints. This plugin exponentially increases the strength
of your stored password.

Arbitrary section

Installation

Upload BallastSecurityHasher.zip through the plugin upload interface
Activate the plugin through the ‘Plugins’ menu in WordPress
Choose the hash you want to convert to from the Secure Hasher Configuration Menu
Log out and log back in, and your hash will be recomputed

Frequently Asked Questions

How will this affect my login time?

The difference to login time is negligable, but to someone trying to crack your password, it can add years to the cracking time.

How can I change my password hashes back?

As of version 0.2b, you are able to start converting all logins back to the original hash. In order to deactive this plugin without
locking yourself out of your WordPress, you need to have all your users login after reverting the hashing methods to the original.

Review feed

No reviews available

Screenshots

No screenshots available

Changelog

1.2.1

Colaborator: HacKan (@hackancuba) solved issue when php v < 5.3.0 and problem with line 358

1.2

Added nonce

1.1

Added ARC4PBKDF2 along with a custom version of ARC4 developed by me.

1.0

Added 3 configurations of the classic PBKDF2 key derivation

0.3b

Added the option to use 10000 or 100000 iterations instead of 2048

0.2b

Added the option to convert hashes back to the original WordPress generated hashes
Added a configuration screen page

0.1b

Initial version set with SHA-256 with 2048 iterations as the configuration static

Back to plugins