On Tuesday 13 August 2002 01:01 pm, you wrote: > On Wed, Aug 14, 2002 at 02:20:07AM -0400, Robert Parker wrote: > > I don't remember where I read this but it only takes the crackers about 1 > > - 2 seconds to crack your average MD5 encrypted password. This is quite > > logical because all they had to do is make a database of all of the MD5 > > sums of all the passwords in the various dictionaries. > > Of course, that would necessitate access to the machine. A brute force > dictionary attack is much more likely. To thwart both, enforce strong > passwords. > > --Dan Yes I am assuming possible access to the machine, it is far from rare. Agree with enforcing strong passwords when that is possible. Just that extra steps may be needed, beyond the encryption method. Bob
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
