MD5 - Info Please

Xtrem-Solutions · #21 (**permalink**) 11-03-04, 05:08 PM

For even more safety, I advise you to use the sha1 function !

Deekay · #22 (**permalink**) 11-03-04, 05:41 PM

Quote:

Originally Posted by moronovich

wow.. i just know that. can you show me the math in determining the time??

By using Cain 2.5 (default charset) with an md5 password of 6 chars. It will take about 10 minutes.. try it out.

4n7hr4x · #23 (**permalink**) 11-03-04, 06:04 PM

Quote:

Originally Posted by Xtrem-Solutions

For even more safety, I advise you to use the sha1 function !

Thats pretty much the same as PASSWORD encryption with mySQL.

Eclipse · #24 (**permalink**) 11-03-04, 08:24 PM

Quote:

Originally Posted by 4n7hr4x

Thats pretty much the same as PASSWORD encryption with mySQL.

Um... not really sha1 if my memory serves my correct is a 41 bit hexoganol encryption and the PASSWORD encryption with md5 which is 32 bit decimal encrytion. Either was sha1 is safer than md5 but still not an amazing line of protection any encryption can be brute-forced, but if your looking from only a decryption stand-point then sha1 is a good deal harder to crack than md5. Try other encryptions using the mcrypt and crypt functions, whenever I need an encryption for personal use, like my personal website or something I use a TWOFISH {128 bit} or BLOWFISH {32-448 bit} usally blowfish since I can use a custom variable-key length.

XxXoldsaltXxX · #25 (**permalink**) 11-03-04, 08:52 PM

Quote:

Originally Posted by Eclipse

Hey,
While md5 is very hard to crack brute forcing it is always a risk. So make sure to use a password that most like wont be in a password list. For example something like: mypasswordpwns or something like that....

use mixed caps, like "mYpASSwOrDPWNS", and you just essentially doubled the time it will take to crack the pass.