Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
I have users who log in, AES password gets set, its decodes just fine, then all of a sudden a few days latter, the AES password starts decoding to gibberish. If I delete the row in the AES table, it gets recreated just fine.
Comments
Comment #1
agerson CreditAttribution: agerson commentedWait, I bet have found the culprit: "The keyfile /Library/WebServer/... is not writable. This module needs to be able to write to this file to update the encryption key."
Comment #2
easyfit CreditAttribution: easyfit commentedHi agerson,
Let me know how it goes.
Comment #3
agerson CreditAttribution: agerson commentedWell, its still happening. Any ideas?
Thanks.
Adam
Comment #4
easyfit CreditAttribution: easyfit commentedIf the passwords are being decryped to garbage then something has to have changed in how they are decrypted from how they were encrypted (and not changed in the AES settings interface since that would update things correctly, but in some other way).
I think the easiest thing to try is to switch temporarily to using database storage for your encryption key, and see if that makes any difference.
A more exhaustive bug tracking attempt would be to write down all the AES parameters as they are when things work, and match them up with the AES settings when it stops working. That way you might be able to see what it is that change and then we can start trying to figure out why. I would also write down at least one of the encrypted passwords (the encrypted string that is, not the actual password) just to see that it isn't the actual encryption strings that change for some reason.
Comment #5
agerson CreditAttribution: agerson commentedI changed it to database storage and it happened again today. So strange. I will continue to investigate.
Comment #6
easyfit CreditAttribution: easyfit commentedI'm sorry to say that I have no idea what could be causing this for you, but I've got a new version out and you might want to try it with the phpseclib implementaton since phpseclib doesn't allow changing anything except the key, which obviously rules out a lot of variables.
Comment #7
easyfit CreditAttribution: easyfit commented