Best way to use salts?
View Single Post
08-31-2009, 02:00 PM
Join Date: Sep 2007
Originally Posted by
I reasoned that in most cases the MD5 output would be a lot longer and therefore more complex then the input string, for example a 6 char password vs an MD5 string.
Always do hash your password inputs, but don't go crazy with it. MD5 and SHA1 both have been considered insecure for years now by the government. They both have high collision rates on top of that. Although SHA1 has not yet been cracked.
Rainbow tables can us used against either one easily, but even a simple salt makes those useless.
View Public Profile
Send a private message to Village Idiot
Find More Posts by Village Idiot