diff --git a/Rocksolid_Light/rocksolid/files.php b/Rocksolid_Light/rocksolid/files.php
index e67645d..3b438f3 100644
--- a/Rocksolid_Light/rocksolid/files.php
+++ b/Rocksolid_Light/rocksolid/files.php
@@ -2,14 +2,13 @@
 
 include "config.inc.php";
 include "newsportal.php";
-include $config_dir.'/admin.inc.php';
 
   if(isset($_COOKIE['tzo'])) {
     $offset=$_COOKIE['tzo'];
   } else {
     $offset=$CONFIG['timezone'];
   }
-  if($_REQUEST['command'] == 'Show' && $_REQUEST['key'] == hash('md5', $admin['key'])) {
+  if($_REQUEST['command'] == 'Show' && password_verify($CONFIG['thissitekey'], $_REQUEST['key'])) {
     $getfilename = $spooldir.'/upload/'.$_REQUEST['showfile'];
     $getfh = fopen($getfilename, "rb");
     $getfile = fread($getfh, filesize($getfilename));
@@ -41,7 +40,7 @@ include "head.inc";
     echo "Select a user directory to browse</small></strong>";
     echo '<form name="browse" method="post" action="files.php" enctype="multipart/form-data">';
     echo '<input name="command" type="hidden" id="command" value="Browse" readonly="readonly">';
-    echo '<input type="hidden" name="key" value="'.hash('md5', $admin['key']).'">';
+    echo '<input type="hidden" name="key" value="'.password_hash($CONFIG['thissitekey'], PASSWORD_DEFAULT).'">';
     echo '<select name="listbox">';  
     foreach($users as $user) {
       $num = count(scandir($spooldir.'/upload/'.$user.'/')) - 2;
@@ -57,11 +56,11 @@ include "head.inc";
     echo '</form>';
   }
 
-  if($found == 1 && $_POST['key'] == hash('md5', $admin['key'])) {
-    display_user_files($_POST['listbox'], $offset, $admin);
+  if($found == 1 && password_verify($CONFIG['thissitekey'], $_REQUEST['key'])) {
+    display_user_files($_POST['listbox'], $offset);
   } 
 
-function display_user_files($user, $offset, $admin) {
+function display_user_files($user, $offset) {
   global $CONFIG, $spooldir, $text_header;
   $directory = $spooldir.'/upload/'.$user.'/';
   if(is_dir($directory)) {
@@ -95,12 +94,11 @@ function display_user_files($user, $offset, $admin) {
     echo '<button class="np_button_link" type="submit">'.$file.'</button>';
     echo '<input type="hidden" name="showfile" value="'.$user.'/'.$file.'"/>';
     echo '<input type="hidden" name="showfilename" value="'.$file.'"/>';
-    echo '<input type="hidden" name="key" value="'.hash('md5', $admin['key']).'">';
+    echo '<input type="hidden" name="key" value="'.password_hash($CONFIG['thissitekey'], PASSWORD_DEFAULT).'">';
     echo '<input type="hidden" name="contenttype" value="'.$mime.'">';
     echo '<input name="command" type="hidden" id="command" value="Show" readonly="readonly">';
     echo '</form>';
     echo '</td>';
-//    echo '<td class="'.$lineclass.'"><span class="np_thread_line_text">'.$file.'</span></td>';
     echo '<td class="'.$lineclass.'"><span class="np_thread_line_text">'.$mime.'</span></td>';
     echo '<td class="'.$lineclass.'"><span class="np_thread_line_text">'.$newdate.'</span></td>';
     echo '</tr>';
diff --git a/Rocksolid_Light/rocksolid/search.php b/Rocksolid_Light/rocksolid/search.php
index fb9a37f..dee43f8 100644
--- a/Rocksolid_Light/rocksolid/search.php
+++ b/Rocksolid_Light/rocksolid/search.php
@@ -4,11 +4,10 @@ session_start();
 
 include "config.inc.php";
 include "newsportal.php";
-include $config_dir.'/admin.inc.php';
 
 $snippet_size = 100;
 
-if(!isset($_POST['key']) || $_POST['key'] !== hash('md5', $admin['key'])) {
+if(!isset($_POST['key']) || !password_verify($CONFIG['thissitekey'], $_POST['key'])) {
 include "head.inc"; 
 
   echo '<h1 class="np_thread_headline">';
@@ -66,7 +65,7 @@ if ($_GET['searchpoint'] == 'Poster') {
   if(isset($_GET['group'])) {
     echo '<input type="hidden" name="group" value="'.$_GET['group'].'">';
   }
-  echo '<input type="hidden" name="key" value="'.hash('md5', $admin['key']).'">';
+  echo '<input type="hidden" name="key" value="'.password_hash($CONFIG['thissitekey'], PASSWORD_DEFAULT).'">';
 
 ?>
 </tr>
diff --git a/Rocksolid_Light/rocksolid/upload.php b/Rocksolid_Light/rocksolid/upload.php
index a613024..7faba6d 100644
--- a/Rocksolid_Light/rocksolid/upload.php
+++ b/Rocksolid_Light/rocksolid/upload.php
@@ -1,7 +1,6 @@
 <?php
 include "config.inc.php";
 include "newsportal.php";
-include $config_dir.'/admin.inc.php';
 
 if(isset($_POST['username'])) {
   $name = $_POST['username'];
@@ -23,7 +22,7 @@ include "head.inc";
 
 if(isset($_FILES)) {
 // Check auth here
-    if(isset($_POST['key']) && $_POST['key'] == hash('md5', $admin['key'])) {
+    if(isset($_POST['key']) && password_verify($CONFIG['thissitekey'], $_POST['key'])) {
       if(check_bbs_auth($_POST['username'], $_POST['password'])) {
 	$userdir = '/var/spool/rslight/upload/'.strtolower($_POST[username]);
 	$upload_to = $userdir.'/'.$_FILES[photo][name];
@@ -49,11 +48,11 @@ if(isset($_FILES)) {
 
 echo '<table border="0" align="center" cellpadding="0" cellspacing="1">';
 echo '<form name="form1" method="post" action="upload.php" enctype="multipart/form-data">';
-echo '<tr><td><strong>Please Login to Upload<br />(max size=1MB)</strong></td></tr>';
+echo '<tr><td><strong>Please Login to Upload<br />(max size=2MB)</strong></td></tr>';
 echo '<tr><td>Username:</td><td><input name="username" type="text" id="username" value="'.$name.'"></td></tr>';
 echo '<tr><td>Password:</td><td><input name="password" type="password" id="password"></td></tr>';
 echo '<td><input name="command" type="hidden" id="command" value="Upload" readonly="readonly"></td>';
-echo '<input type="hidden" name="key" value="'.hash('md5', $admin['key']).'">';
+echo '<input type="hidden" name="key" value="'.password_hash($CONFIG['thissitekey'], PASSWORD_DEFAULT).'">';
 echo '<tr><td><input type="file" name="photo" id="fileSelect" value="fileSelect" accept="image/*,audio/*,text/*,application/*"></td>
 ';
 echo '<td>&nbsp;</td>';