News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Joseph Scott's Blog:
Slow Hashing
April 10, 2012 @ 11:55:02

In this new post Joseph Scott takes a look at hashing in PHP, specifically around md5 hashes, and a better alternative (that's also more secure.

The majority of the Coding Horror: Speed Hashing post talks about speed based on MD5. [...] If you are still using MD5 to hash passwords (or worse, aren't hashing passwords at all) then please stop and go use bcrypt. For those using PHP phpass is a great option.

He talks about the crypt method, how its encryption method and "cost" value effects the speed and how difficult it would be to generate all possible hashes for a password (hint: crypt with a cost of 13 is worlds better than md5).

0 comments voice your opinion now!
slow hashing md5 crypt blowfish cost speed


blog comments powered by Disqus

Similar Posts

PHPClasses.org: PHPNG Dramatic Speedup Features Coming in PHP 6 Release

Stefan Esser's Blog: Suhosin 0.9.20 and crypt() Thread Safety Vulnerability

Jim Plush\'s Blog: Holy Shit Batman - Sites popping up to decode Zend encoded files!

Start up web 2.0 Blog: CakePHP & CodeIgniter Benchmark

Wez Furlong\'s Blog: Just the facts, ma\'am


Community Events

Don't see your event here?
Let us know!


voicesoftheelephpant release library community version laravel5 introduction unittest podcast language laravel extension series opinion api list interview framework php7 wordpress

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework