Not sure where best to post this. I run a forum that is still based on php3.0.x. I know, I know, but more than half of the code is actually custom / modded, so I'm unlikely to ever rebuild it on php3.2. It runs on php7 (yes, had to mod it a fair bit for that too).
Question is: I've never changed anything about password hashing. I'd like the forum to use the more secure hashes available in more recent php3.1.x or 3.2.x i.e. to use bcrypt to be more secure than the php3.0.x phpass salted md5 hash. The passwords in the database currently all have prefix $H$ (which indicates the salted md5 hash).
I'm hoping I can just bring in the password manager folders php 3.2 and then put in new versions of the appropriate functions within files... anyone know what would be involved? Anyone can help?