I want to write a PHP script that can generate .htaccess files to use for authentication. I looked up the man page for Apache and it says that on Windows the default flag is set for using a "modified" MD5 algorithm to generate the password hash. Anybody know how to do this in PHP?

crypt()...

'Kay, I thought it would be md5 with some manipulation. :)

Will a hash generated by crypt() work on both Windows and Unix Apache?

Originally posted by filburt1
'Kay, I thought it would be md5 with some manipulation. :)

Will a hash generated by crypt() work on both Windows and Unix Apache?
Yes.

Awesome, thanks Chen :)

'Kay, not working. htpasswd in Windows generates this when I type "password":

Automatically using MD5 format on Windows.
New password: ********
Re-type new password: ********
filburt1:$apr1$eR3.....$OGThTZOzEE7JZmkqxJQt.0

crypt generates this:

filburt1:t.KEawYVJvlSA

Chen? :)

Sorry. Have you checked the PHP docs for the crypt() function?

Yup, specifically the user comments about crypt() and .htaccess and none of them helped. :(

Looks like I'll just end up exec'ing htpasswd...

crypt() will output something different every time... (it uses a random 'salt')

edit: Yes, I know you can specify the salt yourself but that isn't a good idea...