PHPDeveloper.org: Joseph Scott's Blog: Slow Hashing

	News Feed
	Jobs Feed

Sections

Tutorials

Books

Events

Talks

Jobs

News Archive

Community News: Packagist Latest Releases for 05.25.2013

Adam Culp: PHP usage statistics

Michelangelo van Dam: UA Testing with Selenium and PHPUnit

PHP.net: PHP 5.5.0RC2 is available

Community News: Packagist Latest Releases for 05.24.2013

Site News: Popular Posts for the Week of 05.24.2013

Anna Filina: Full Test Coverage is Impractical

ZFort Group: The Battle of the Titans. Zend vs. Symfony

Lorna Mitchell: Simplest PHP Generator Example

Engine Yard: A Conversation About Testing in PHP

Joseph Scott's Blog:
Slow Hashing

by Chris Cornutt April 10, 2012 @ 11:55:02

In this new post Joseph Scott takes a look at hashing in PHP, specifically around md5 hashes, and a better alternative (that's also more secure.

The majority of the Coding Horror: Speed Hashing post talks about speed based on MD5. [...] If you are still using MD5 to hash passwords (or worse, aren't hashing passwords at all) then please stop and go use bcrypt. For those using PHP phpass is a great option.

He talks about the crypt method, how its encryption method and "cost" value effects the speed and how difficult it would be to generate all possible hashes for a password (hint: crypt with a cost of 13 is worlds better than md5).

0 comments voice your opinion now!
slow hashing md5 crypt blowfish cost speed

blog comments powered by Disqus

Similar Posts

Zend Developer Zone: Five tips for speeding up Eclipse PDT and Zend Studio

AnyExample.com: PHP password generation

Jamroll.co.uk: Using Lighttpd to Dodge the Digg Effect

Shay Ben Moshe's Blog: Hashing Passwords Properly

Ibuildings techPortal: Buy vs. Build

Community Events

Don't see your event here?
Let us know!

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework