Re: md5 encryption

>>>Start with a given string, it will always map to the same hash. Start
>>>with the hash, it could map to any one of an infinite number of strings.

So? The idea is to get a string that would match the hash, (to get the
password).
Of course there is no way of knowing if that was the original string, but
that's not what the OP was asking.

He was asking about passwords. Almost every site that is md5() only compare
the hash as they cannot compare the string.
So, technically, given a hash key you can get a string. In turn that string
would match the hash and give you access.

>>
>> I don't quite agree. But that's not the point.
>> I was only replying to the OP. So for the third time, it is technically
>> possible to get the string but almost impossible to do so.
>
> No, it isn't possible! (I know that's not the point, but since I'm
> bored...)

You are right, my statement was wrong. I should have said.
"...it is technically possible to get the string but..."

> Clearly, it's very unlikely that I'd get the same encoded string if I come
> along with a different page of text and did this. However, that doesn't
> mean that you have any chance of identifying the original string given the
> encoded string. There has been a fundamental loss of information, which is
> impossible to retrieve unless you already know something about the
> original string.
>

Again, I agree. But in all fairness my password statement still holds true.
You can use the hash key to get a string. That string will give you access
to the site, (although it might not be the original password string).

> --
> Oli

Simon


.

Relevant Pages

  • Re: How to write a diff in VB6 for comparing two xml files?
    ... No, the best you could do is to read both into string and use StrCompbut it's inefficient and, but using the hash ... Private Declare Function CryptAcquireContext Lib "AdvAPI32.dll" Alias _ ... Dim HashAAs Byte, HashLenA As Long ...
    (microsoft.public.vb.general.discussion)
  • Re: something like switch in c
    ... >> straightforward string comparisions. ... > inner table size and/or add symbols to expand the hash. ... It all depends on the empirical pattern of the actual keys. ... The value of the random number generator is UNCHANGED on ...
    (comp.programming)
  • Re: How to make PKCS#7 signature using CryptoAPI?
    ... Those MSDN samples hash a string PLUS the null byte (so that it ... I tried your sample and had no problem verifying with openssl (after I added ... functions (including CryptSignMessage). ...
    (microsoft.public.platformsdk.security)
  • Re: How to make PKCS#7 signature using CryptoAPI?
    ... "Mitch Gallant" wrote: ... Those MSDN samples hash a string PLUS the null byte (so that it ... functions (including CryptSignMessage). ...
    (microsoft.public.platformsdk.security)
  • Re: Base36
    ... static string tokens = ... But - I don't think you want all those silly characters in the product key. ... I should be able to recalc the hash at the client ... > conversion to long so I can pass each long to the BaseXX converter to get ...
    (microsoft.public.dotnet.languages.csharp)