69
60% of MD5 password hashes are crackable in under an hour (www.theregister.com)
submitted 2 weeks ago by sanitation@lemmy.today to c/privacy@lemmy.dbzer0.com
22 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] e0qdk@reddthat.com 15 points 2 weeks ago

Yep, salt. Also, there are much better options than MD5. I used bcrypt in systems I built a while back. There's also scrypt and argon2, which are newer. (Just be careful that you don't create a DoS vulnerability while hardening your login system...)

[-] kmartburrito@lemmy.world 10 points 2 weeks ago

Yep, and md5 is only used by many because it's so fast. Cutting corners for speed's sake is always going to come with a penalty somewhere.

[-] gravitas_deficiency@sh.itjust.works 3 points 1 week ago

And, you know, checksums, which MD5 is honestly great for

[-] doughless@lemmy.world 2 points 1 week ago

MD5 is vulnerable to collisions, so it's possible for an attacker to match checksums, too.

[-] kingofras@lemmy.world 3 points 1 week ago

You sound very salty for someone this knowledgeable.

this post was submitted on 10 May 2026
69 points (91.6% liked)

Privacy

5683 readers
602 users here now

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!

  1. Be civil and no prejudice
  2. Don't promote big-tech software
  3. No apathy and defeatism for privacy (i.e. "They already have my data, why bother?")
  4. No reposting of news that was already posted
  5. No crypto, blockchain, NFTs
  6. No Xitter links (if absolutely necessary, use xcancel)

Related communities:

Some of these are only vaguely related, but great communities.

founded 2 years ago
MODERATORS
otter@lemmy.ca
shaytan@lemmy.dbzer0.com