|
-
Jun 12th, 2003, 04:08 PM
#1
Thread Starter
Stuck in the 80s
[Resolved] ?? vs md5()
Is there any other type of encryption, besides md5()?
I have a guy using one of my scripts that's paranoid someone will crack his password and insists that md5() is easy to crack (although he hasn't shown me proof).
So what are your thoughts? What do you use?
Last edited by The Hobo; Jun 22nd, 2003 at 01:38 PM.
-
Jun 18th, 2003, 11:50 AM
#2
Addicted Member
PASSWORD() is another level of encryption, dont think its better than MD5 though.
-
Jun 18th, 2003, 08:56 PM
#3
Thread Starter
Stuck in the 80s
The folks over at GalahTech gave me few ideas.
-
Jun 24th, 2003, 12:57 PM
#4
Frenzied Member
please share, if you don't use salt or md5() what other choices do you have unless you make your own.
and besides I never heard anybody crack md5() as it is one way only. 128bit is like 100+ years to crack.
-
Jun 24th, 2003, 02:28 PM
#5
Thread Starter
Stuck in the 80s
They suggested something along the lines of:
Code:
function passenc($password) {
$password .= "jk4swq1";
$password = md5(md5($password));
return $password;
}
Or something.
-
Jun 24th, 2003, 02:29 PM
#6
Thread Starter
Stuck in the 80s
It is probably a good thing to note that I sent this guy a md5'ed string and told him to tell me what it originally was. I said that if he could crack it and tell me what it said, then I would try to implement stronger encryption in the software.
He hasn't responded to me yet, and that was a few weeks ago. So it's likely that he's full of it.
-
Jun 24th, 2003, 04:26 PM
#7
Frenzied Member
doing a double md5() pretty sneeky 
it even says in the manual that md5() is one way only. I do believe you are right, that guy is full of it, and it isn't php 
show him the manual where it says that.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|