- my $query = $dbh->prepare(q{UPDATE users SET password = MD5($1)
- WHERE password = MD5($2) AND uid = $3
+ if (length $c->req->param('pass') < 4) {
+ $c->flash(error => "Your password need to be at least 4 characters");
+ } else {
+ my $query = $dbh->prepare(q{UPDATE users SET password = $1
+ WHERE password = crypt($2,password) AND uid = $3