How to use SHA256 or SHA512 password hashes instead of MD5
MD5 is no longer considered secure and SHA512 is recommended instead.
New installs of Shinobi will use SHA256 as the default encryption method.
How to Enable SHA256
1. Open Terminal and navigate to your Shinobi directory. This is usually /home/Shinobi.
cd /home/Shinobi
2. Run the following to modify your conf.json to use the new Password Type.
node tools/modifyConfiguration.js passwordType=sha256
3. Restart Shinobi
pm2 restart camera.js
How to Enable SHA512
1. Open Terminal and navigate to your Shinobi directory. This is usually /home/Shinobi.
cd /home/Shinobi
2. Run the following to modify your conf.json to use the new Password Type.
node tools/modifyConfiguration.js passwordType=sha512
3. Now add your Salt. Before using the follow command you must replace my salty secret with a different string.
node tools/modifyConfiguration.js passwordSalt="my salty secret"
4. Restart Shinobi.
pm2 restart camera.js
Now you may not be able to login
Have no fear! That is because your passwords are still stored as a format other than what you have just selected. Follow the steps below to reset your passwords.
1. Login to your Superuser account at http://YOUR_SHINOBI/super. Default credentials are as follows.
Username : [email protected] Password : admin
Be aware that MD5 passwords will still work for Superusers. The Superuser is like this because the password string is saved in a JSON file. This file shouldn't be accessed by anyone other than server admins.
Another reason is I don't want to lock people out of the only way to easily fix their accounts after switching.
2. Open the Settings for the account you want to reset and set a new password.
3. Now you should be able to login to the regular dashboard and admin panel again.