Do not use MD5 for hashing cookie and nonce values

### Code of Conduct

- [X] I agree to follow this project's [Code of Conduct](https://github.com/YOURLS/.github/blob/main/CODE_OF_CONDUCT.md).

### Submission validity

- [X] This is not a personal support request, that should be posted on [discussions community](https://github.com/YOURLS/YOURLS/discussions).
- [X] I checked [current issues](https://github.com/YOURLS/YOURLS/issues) and this request isn't a duplicate of an existing issue, opened or closed.

### Summary

In functions-auth.php, the MD5 algorithm is used in yourls_salt() function.

This function is used to hash the cookie content and the nonces used on the site.

Is it possible to configure a more modern hash algoriothm to improve security?

### Motivation

Do no longer use MD5 hash

### Describe the solution

_No response_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Do not use MD5 for hashing cookie and nonce values #3277

Code of Conduct

Submission validity

Summary

Motivation

Describe the solution

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Do not use MD5 for hashing cookie and nonce values #3277

Description

Code of Conduct

Submission validity

Summary

Motivation

Describe the solution

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions