1.升级登录验证、用户密码由MD5升级为HASH

2.更新IP库

app/Http/Controllers/AdminController.php

@@ -1414,11 +1414,11 @@ EOF;
             $old_password = Hash::make(trim($old_password));
             $new_password = Hash::make(trim($new_password));
 
-            if (Auth::user()->password != $old_password) {
+            if (!Hash::check(Auth::user()->password, $old_password)) {
                 Session::flash('errorMsg', '旧密码错误，请重新输入');
 
                 return Redirect::back();
-            } elseif (Auth::user()->password == $new_password) {
+            } elseif (Hash::check(Auth::user()->password, $new_password)) {
                 Session::flash('errorMsg', '新密码不可与旧密码一样，请重新输入');
 
                 return Redirect::back();

app/Http/Controllers/UserController.php

@@ -240,11 +240,11 @@ class UserController extends Controller
                 $old_password = Hash::make(trim($old_password));
                 $new_password = Hash::make(trim($new_password));
 
-                if (Auth::user()->password != $old_password) {
+                if (!Hash::check(Auth::user()->password, $old_password)) {
                     Session::flash('errorMsg', '旧密码错误，请重新输入');
 
                     return Redirect::to('profile#tab_1');
-                } elseif (Auth::user()->password == $new_password) {
+                } elseif (Hash::check(Auth::user()->password, $new_password)) {
                     Session::flash('errorMsg', '新密码不可与旧密码一样，请重新输入');
 
                     return Redirect::to('profile#tab_1');