Privacy

5673 readers

343 users here now

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!

Be civil and no prejudice
Don't promote big-tech software
No apathy and defeatism for privacy (i.e. "They already have my data, why bother?")
No reposting of news that was already posted
No crypto, blockchain, NFTs
No Xitter links (if absolutely necessary, use xcancel)

Related communities:

Some of these are only vaguely related, but great communities.

founded 2 years ago

MODERATORS

otter@lemmy.ca

shaytan@lemmy.dbzer0.com

60% of MD5 password hashes are crackable in under an hour (www.theregister.com)

submitted 1 week ago by sanitation@lemmy.today to c/privacy@lemmy.dbzer0.com

21 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] e0qdk@reddthat.com 13 points 1 week ago (4 children)

Yep, salt. Also, there are much better options than MD5. I used bcrypt in systems I built a while back. There's also scrypt and argon2, which are newer. (Just be careful that you don't create a DoS vulnerability while hardening your login system...)

[–] kmartburrito@lemmy.world 10 points 1 week ago (2 children)

Yep, and md5 is only used by many because it's so fast. Cutting corners for speed's sake is always going to come with a penalty somewhere.

[–] gravitas_deficiency@sh.itjust.works 3 points 1 week ago (1 children)

And, you know, checksums, which MD5 is honestly great for

[–] doughless@lemmy.world 2 points 1 week ago

MD5 is vulnerable to collisions, so it's possible for an attacker to match checksums, too.

load more comments (1 replies)