View Single Post
Old 2009-06-23, 15:25   #10
joblack's Avatar
Oct 2008

52×29 Posts

Originally Posted by lavalamp View Post
Rainbow tables are a wonderful thing though:

MD5 rainbow tables can be generated (in a fairly large amount of time), or even downloaded from some places, and then the plaintext Xilman could be determined from the hash rather quickly after that, a matter of seconds in fact.
Rainbow tables are only working if the password hash isn't salted. And that isn't the case for Linux, Windows Vista and most Unix variants.

Having some collisions also doesn't mean broken. Wikipedia and a search for your 'broken md5' hasn't revealed anything.

It's weakened but thats it ...

Last fiddled with by joblack on 2009-06-23 at 15:26
joblack is offline   Reply With Quote