Another reason NOT to use MD5

bpat1434

Just read this. It's not very in-depth; however, just goes to show that you really shouldn't be using MD5 encryption for things; especially when SHA-1 or crc32 is readily available in php without any extra modules.

Of course using mcrypt will always be more powerful 😉

laserlight

Eh, CRC32? That is not even a cryptographic hash algorithm and so should fail miserably compared to MD5 when used as such.

EDIT:
This is funny:

Robert McMillan wrote:
But the flaw in the MD5 algorithm makes it possible to create two different documents that have the same numerical hash value.

The "possible" should be replaced by "feasible" since all hashing algorithms have this "flaw" that "makes it possible to create two different documents that have the same numerical hash value".

Weedpacket

Heh;

[url]about:config[/url]

security.ssl3.rsa_rc4_128_md5       user set       boolean       false

"This is why we tend to abandon [cryptographic] algorithms at the first sign of weakness; we know that with time, the weaknesses will be exploited more effectively to yield better and faster attacks."

And I just noted a little obfuscation thingy vbulletin does with those urls....

foyer

200 PS3s? whaa?

Good to see that the PS3 is getting used after all

Weedpacket

...for something other than a missile guidance system.