. $this->db->escape($ password = '" . $this->db->escape(sha1($salt . sha1($salt . sha1($password))))

Question

$this->db->query("UPDATE " . DB_PREFIX . "user SET salt = \'" . $this->db->escape($salt = substr(md5(uniqid(rand(), true)), 0, 9