List Info

Thread: Are we sure we should be using MD5?
Are we sure we should be using MD5?
user name
 2006-04-23 01:34:16 

  


  

    MD5 has been totally cracked. We should probably be using SHA-256 or something. Admittedly, it would be hard for someone to get the hashes, but it could happen.


  

  
  
   
     
    

  

    Are we sure we should be using MD5?
  


  

     user name

     2006-04-23 03:38:47
  


  

    
Patrick Hulin wrote:
> MD5 has been totally cracked <http://en.wikip
edia.org/wiki/MD5>. We 
> should probably be using SHA-256 or something.
Admittedly, it would be 
> hard for someone to get the hashes, but it could
happen.
>
------------------------------------------------------------
------------
>
> _______________________________________________
> artweb-list mailing list
> artweb-listgnome.org
> ht
tp://mail.gnome.org/mailman/listinfo/artweb-list
>   
Is it worth the effort to crack each MD5 sum in the the
database and 
re-enter them as SHA sums?

James
_______________________________________________
artweb-list mailing list
artweb-listgnome.org
ht
tp://mail.gnome.org/mailman/listinfo/artweb-list


  


  

    
  

  
  
   
     
    

  

    Are we sure we should be using MD5?
  


  

     user name

     2006-04-23 17:58:19
  


  

    

  


  

    Here's a patch that sets it up so that when a user logs in, their password is added as a sha1 to a different column.

http://xbean.gotdns.com/art-web-sha1.diff


On 4/22/06, jamesm <bluebottle.com">jamesmbluebottle.com> wrote:

Patrick Hulin wrote:
>; MD5 has been totally cracked <http://en.wikipedia.org/wiki/MD5>. We
> should probably be using SHA-256 or something. Admittedly, it would be

> hard for someone to get the hashes, but it could happen.
&gt; ------------------------------------------------------------------------
>;
> _______________________________________________
> artweb-list mailing list

> gnome.org">artweb-listgnome.org
> http://mail.gnome.org/mailman/listinfo/artweb-list
&gt;
Is it worth the effort to crack each MD5 sum in the the database and

re-enter them as SHA sums?

James



  

  
  
   
     
    






 [1-3]











   
 





about | contact  Other archives ( Real Estate discussion Medical topics )