security, you're doing it wrong
August 12, 2009 - 11:56 AM
I was reading through a white paper today, I won't say which one it was or what company produced it, but one paragraph in particular caught my attention.
"The system uses cryptographic hashing based on the popular MD5 algorithm. The algorithm is designed so that any changed byte of the hash propagates new changes throughout the remainder of the calculation. The result is a completely different hash that is nearly impossible to break."
Um, really? MD5 is secure? Maybe you should read a little more into the subject. Here's a link for you: http://en.wikipedia.org/wiki/MD5
People, really, please stop using MD5. Switch to something stronger. SHA-1 or SHA-2 maybe?
