I have changed the Configure::write(‘Security.salt’, ‘############’); value in the file config/core.php file to a

Question

0

Asked: May 14, 20262026-05-14T19:44:34+00:00 2026-05-14T19:44:34+00:00

I have changed the Configure::write(‘Security.salt’, ‘############’); value in the file config/core.php file to a

0

I have changed the

Configure::write('Security.salt', '############');

value in the file

config/core.php

file to a ‘256-bit hex key’. Is it safe or a good practice to change these lines for every different installation of cakephp application or shall I revert back to the original ?

I also changed the

Configure::write('Security.cipherSeed','7927237598237592759727');

to a different one of more length.

Please throw some light on this.

Thanks

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-14T19:44:34+00:00

Editorial Team

2026-05-14T19:44:34+00:00Added an answer on May 14, 2026 at 7:44 pm

It is absolutely necessary that you change the salt values. When you do a clean install of CakePHP the default home page will give a warning if you have not changed the salt value.

On the salt length, see this discussion: What is the optimal length for user password salt?

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have changed the Configure::write(‘Security.salt’, ‘############’); value in the file config/core.php file to a

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply