On Tue, 2006-09-05 at 16:04 +0700, Peter Lauri wrote:
I have bumped into a problem. I need to use a web service that is located on
server B from server A. The server B will execute a script when the web
service is accessed and an email is sent as an parameter. The problem is, if
I only have
Subject: Re: [PHP] Is this unsecure?
On Tue, 2006-09-05 at 16:04 +0700, Peter Lauri wrote:
I have bumped into a problem. I need to use a web service that is located
on
server B from server A. The server B will execute a script when the web
service is accessed and an email is sent as an parameter
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
$authstring = md5(asdf.$email.fdsa);
md5 is unsecure.
Use sha1 ( http://www.php.net/sha1 ) instead
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
Ruben Rubio wrote:
md5 is unsecure.
Use sha1 ( http://www.php.net/sha1 ) instead
SHA1 has also been partially broken. Until more hash algorithms work
their way into PHP, using both md5 and sha1 plus the remote IP as
mentioned in a previous email would certainly add to the security of the
What you are doing is what banks have been doing for ages with wire
transfers and it is called MAC, Message Authentication Code (not related to
an Ethernet MAC address at all).
Wire transfers are sent in clear text amongst banks. Each bank has set a
'signature' (a code) with each other.
-general@lists.php.net
Subject: Re: [PHP] Is this unsecure?
On Tue, 2006-09-05 at 16:04 +0700, Peter Lauri wrote:
I have bumped into a problem. I need to use a web service that is located
on
server B from server A. The server B will execute a script when the web
service is accessed and an email
At 4:48 PM +0200 9/5/06, Satyam wrote:
It doesn't matter that MD5 is not secure or that it can be
decripted (which, in fact, it cannot, since it is a one-way code),
Not that you said otherwise.
It's my understanding that while MD5 has cannot be decrypted some
encryption can be cracked by
I didn't mean to contradict anyone, I just meant to make sure that Peter
knew that in this case it didn't matter.
Satyam
- Original Message -
From: tedd [EMAIL PROTECTED]
To: php-general@lists.php.net
Sent: Tuesday, September 05, 2006 6:18 PM
Subject: Re: [PHP] Is this unsecure
On 9/5/06, tedd [EMAIL PROTECTED] wrote:
At 4:48 PM +0200 9/5/06, Satyam wrote:
It's my understanding that while MD5 has cannot be decrypted some
encryption can be cracked by matching matching results. They don't
have to work the code backwards.
For example, if I MD5 apple -- it will produces a
At 12:10 PM -0500 9/5/06, Oscar Gosdinski wrote:
On 9/5/06, tedd [EMAIL PROTECTED] wrote:
At 4:48 PM +0200 9/5/06, Satyam wrote:
It's my understanding that while MD5 has cannot be decrypted some
encryption can be cracked by matching matching results. They don't
have to work the code backwards.
10 matches
Mail list logo
