There are some huge legacy systems whose dependencies on PHPs' mcrypt are extremely important and vital (including the data storage in database). I need to find a way to maintain this library while upgrading to PHP 7.2 (which already worked fine). My local test environment is Windows. The live environment is run on CentOS. Some of the answers I have seen is decrypting and change mcrypt to openssl ( I think that's not possible at the moment since there's a lot of data to decrypt).
// crypt_blowfish symmetric encryption to decrypt the data. If you compiled mcrypt and php without problem, but phpinfo() shows there are no supported ciphers and. How do you Encrypt and Decrypt a PHP String? Ask Question. A salt can be public without harming security (as long as everyone's salt is different), and it is a term used in hashing passwords. Problem, which I consider it to be up to date at the time of writing this post (beginning of 2017). From PHP 7.1.0 the mcrypt_decrypt and. The problem with PHP mcrypt. Upgrading my encryption library from Mcrypt to. Null padding used by mcrypt. To decrypt with another implementation that.
Another way lights to download a lower PHP version with mcrypt-support, copy the extension and add it to php.ini (I do not even know the folder). Downgrading PHP to 5.6 it's not suitable due to security issues. Any light in what could be done in this scenario?
Basically I think you have mentioned all possibilities and you do not have a choice. Do not downgrade to PHP 5.6 this approach has no future. MCrypt was removed from PHP for one of the main reasons why you want to upgrade PHP: Security. The MCrypt library is not maintained anymore. Therefore installing the MCrypt extension is also a bad idea. But it can be a temporary solution (follow e.g. Those instructions ).
The only good solution is migrating from mcrypt to something else. There are questions regarding this topic on Stackoverflow already (e.g. Alternativly you could use some encryption library.