On 16 Apr 2001, Chip Turner wrote:
> The modperl book mentions it double hashes to prevent a
> malicious user from concatenating data onto the values being checked.
> I don't know if they are referring to this weakness, but I suspect
> they are. Sadly, the book doesn't seem to offer a reference for the
> claim as to the specific md5 vulnderability. (Hey Doug, wanna shed
> some light on that somewhat cryptic passage? :)
I'm sure I recall seeing a book on cryptography mentioned in the footnotes
somewhere...
--
<Matt/>
/|| ** Founder and CTO ** ** http://axkit.com/ **
//|| ** AxKit.com Ltd ** ** XML Application Serving **
// || ** http://axkit.org ** ** XSLT, XPathScript, XSP **
// \\| // ** mod_perl news and resources: http://take23.org **
\\//
//\\
// \\
