From f69f9b0811396a185dedb98b62f9f04f6f5694d9 Mon Sep 17 00:00:00 2001
From: Frederic Guillot <fred@kanboard.net>
Date: Wed, 30 Dec 2015 15:15:55 +0100
Subject: Use SHA-1 for session hash to avoid incompatibility between platforms

---
 app/Core/Session/SessionManager.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'app/Core')

diff --git a/app/Core/Session/SessionManager.php b/app/Core/Session/SessionManager.php
index 91b3cf10..4f9f2c0a 100644
--- a/app/Core/Session/SessionManager.php
+++ b/app/Core/Session/SessionManager.php
@@ -100,7 +100,7 @@ class SessionManager extends Base
         ini_set('session.use_strict_mode', '1');
 
         // Better session hash
-        ini_set('session.hash_function', '7'); // 7 = sha512 (Fix compatibility issue with FreeBSD)
+        ini_set('session.hash_function', '1'); // 'sha512' is not compatible with FreeBSD, only MD5 '0' and SHA-1 '1' seems to work
         ini_set('session.hash_bits_per_character', 6);
 
         // Set an additional entropy
-- 
cgit v1.2.3