Hi, > Probably not the normal use for this channel, but *shrug*, can't hurt. > > I was attempting to code a sha256 hash function, for hashing a > password before sending it over the open net. (Sounds like it's > better then md5 for this) > > getting started, I found some psedocode at > http://en.wikipedia.org/wiki/SHA2 and went to work. > > decided a blank string would be the best, > > It gives me > 74525b2e06b6cfebaa347250d2a6c6c9a5438fbbd4b44ffefe68dcdd7b1d1206 > > but according to wikipedia above, it should be > e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
As you've not included the code I can't really help but I thought you might like to have a read of these in relation to passwords and hashing: Hashing secrets, salting and MAC http://benlog.com/articles/2008/06/19/dont-hash-secrets/ bcrypt http://www.usenix.org/events/usenix99/provos/provos_html/node1.html http://chargen.matasano.com/chargen/2007/9/7/enough-with-the-rainbow-tables-what-you-need-to-know-about-s.html Regards, @ndy -- [email protected] http://www.ashurst.eu.org/ 0x7EBA75FF -- http://linuxfromscratch.org/mailman/listinfo/lfs-chat FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
