Page 3 of 3 FirstFirst 123
Results 21 to 28 of 28

Thread: MD5 Can be Decrypted. Unbelievable!

  1. #21
    Join Date
    Sep 2008
    Location
    Bristol - UK
    Posts
    842
    Thanks
    32
    Thanked 132 Times in 131 Posts

    Default

    Shouldn't this site be banned? I mean all it does is allow a greater chance of a person gaining access to data, I don't see any benefits from this. Am I missing something?

    And of course they can only get md5 hashes that have already been entered into the database, like I can see the benefits of the encrypter, just not the decrypter.

    I suppose websites should use better security measures like adding a salt or using a different encryption but there is just no need for md5 decryption (unless I've missed something ).

  2. #22
    Join Date
    Oct 2008
    Location
    Sweden
    Posts
    2,023
    Thanks
    17
    Thanked 319 Times in 318 Posts
    Blog Entries
    3

    Default

    Banned by whom?
    Eddy Proca
    I love Dropbox. Get it through my girlfriend's referral link (I reached my limit) and both you and her get 500 MB extra! Thanks and you're welcome!

  3. #23
    Join Date
    Sep 2008
    Location
    Bristol - UK
    Posts
    842
    Thanks
    32
    Thanked 132 Times in 131 Posts

    Default

    The company that hosts it.

  4. #24
    Join Date
    Oct 2008
    Location
    Sweden
    Posts
    2,023
    Thanks
    17
    Thanked 319 Times in 318 Posts
    Blog Entries
    3

    Default

    Don't get me wrong, I agree that what they are doing is wrong but are there any rules on the web? Can't sites do anything they want almost? I mean, there needs to be some serious shieet in order for a site to be banned. For what it's worth, one benefit of this site is that it encourages people to create more secure encryption systems.
    Eddy Proca
    I love Dropbox. Get it through my girlfriend's referral link (I reached my limit) and both you and her get 500 MB extra! Thanks and you're welcome!

  5. #25
    Join Date
    Sep 2008
    Location
    Bristol - UK
    Posts
    842
    Thanks
    32
    Thanked 132 Times in 131 Posts

    Default

    Well I wasn't actually thinking about asking their host to take down the website or take any kind of action at all. I was more interested as to whether there were any benefits to having MD5 hashes decrypted. But you do have a point, this does make people want to make their sites more secure - but that's only the people who actually know this site exists.

  6. #26
    Join Date
    Apr 2008
    Location
    Limoges, France
    Posts
    395
    Thanks
    13
    Thanked 61 Times in 61 Posts

    Default

    1) MD5 hashes can not be decrypted. Or encrypted for that matter. Encryption is a totally different thing.

    2) The site in question is beneficial to whoever has access to the data it produces and wants to do a dictionary style reversal of a MD5 hash. See 3.

    3) The site is not beneficial to anyone if the MD5 hash in question is not in the site's database.

    4) For this site to be worth anything to anyone, someone needs to have access to a MD5 hash of something of known value and hope that 3 is not an issue.

    To sum up: The site is stupid and I imagine that anyone doing any sort of serious hacking has access to and/or knowledge of much more dangerous stuff.

  7. #27
    Join Date
    Jun 2005
    Location
    英国
    Posts
    11,876
    Thanks
    1
    Thanked 180 Times in 172 Posts
    Blog Entries
    2

    Default

    It's not stupid, but it's not immoral either. It's just a big MD5 dictionary. There's nothing wrong with it. It could even be used to generate some interesting statistics about MD5. With proper application of a salt, which is a basic security measure that everyone should follow, a dictionary attack is not a security issue.
    Twey | I understand English | 日本語が分かります | mi jimpe fi le jbobau | mi esperanton komprenas | je comprends franšais | entiendo espa˝ol | t˘i Ýt hiểu tiếng Việt | ich verstehe ein bisschen Deutsch | beware XHTML | common coding mistakes | tutorials | various stuff | argh PHP!

  8. #28
    Join Date
    Apr 2008
    Location
    Limoges, France
    Posts
    395
    Thanks
    13
    Thanked 61 Times in 61 Posts

    Default

    I hadn't thought about academic purposes. That could be a good use.

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •