voip03 Posted August 7, 2011 Share Posted August 7, 2011 $pass = md5(md5($password)); Is it extra strong or extra processing time? What is the best method? Quote Link to comment https://forums.phpfreaks.com/topic/244105-please-advise-me-md5/ Share on other sites More sharing options...
trq Posted August 7, 2011 Share Posted August 7, 2011 It is not recommended to do that. It actually makes the md5 less secure. Quote Link to comment https://forums.phpfreaks.com/topic/244105-please-advise-me-md5/#findComment-1253624 Share on other sites More sharing options...
Alex Posted August 7, 2011 Share Posted August 7, 2011 What you should be doing is using a salt. $pass = md5('your salt here' . $password); Quote Link to comment https://forums.phpfreaks.com/topic/244105-please-advise-me-md5/#findComment-1253626 Share on other sites More sharing options...
voip03 Posted August 7, 2011 Author Share Posted August 7, 2011 Thorpe! Putting MD5 twice or MD5 it self Quote Link to comment https://forums.phpfreaks.com/topic/244105-please-advise-me-md5/#findComment-1253661 Share on other sites More sharing options...
trq Posted August 7, 2011 Share Posted August 7, 2011 Using md5 twice. Quote Link to comment https://forums.phpfreaks.com/topic/244105-please-advise-me-md5/#findComment-1253664 Share on other sites More sharing options...
PFMaBiSmAd Posted August 7, 2011 Share Posted August 7, 2011 Because md5 values are a fix length (32 characters) and a relatively small set of characters (0-9, a-f), there are actually more collisions (same end values for different starting values) when you do an md5 of an md5 value, making it (slightly) easier for a hacker to produce a table that matches your md5(md5()) values. Quote Link to comment https://forums.phpfreaks.com/topic/244105-please-advise-me-md5/#findComment-1253668 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.