This line:
if ($_POST['password'] != NULL && $_POST['confirm_password'] = !NULL) {
this = !NULL
needs to be != NULL
if ($_POST['password'] != NULL && $_POST['confirm_password'] != NULL) {
Password storage:
Consider using CRYPT_BLOWFISH or PHP 5.5's password_hash()
function. For PHP < 5.5 use the password_hash() compatibility pack
.
- MD5 is considered too fast and is outdated.