Menu

#2 Key File have the same length that the password

v1.0_(example)
open
nobody
None
5
2009-08-14
2009-08-13
Isseu
No

The hash is not very secure, the lenght of the data of the key file is the same that the real password, the solution of this is change the hash, i say to use a cientifical aproved one like whirpool or more simple md5. If the bug is not corrected a brute-force attack will take a lot of less time
(sorry for the english)

Discussion

  • Isseu

    Isseu - 2009-08-14
    • milestone: --> v1.0_(example)
     

  • Robert Alblas

    Robert Alblas - 2009-08-20

    I've been cracking and bashing my mind for a good solution to store a password, but this is indeed still a weakness. md5or whirlpool is a good idea. This will make it much stronger.

     

  • Isseu

    Isseu - 2009-08-20

    and a triple md5??? ¿do you understand me? you hash the hash of the hash so hash the final hash need to cracker 2 32 lenght hash and then hash another one (very, very long......), this for the key file, but for encrypt the files you can use a aes-128 encryptation with a whirpool of the real key (128 lenghts)
    (dificult to understand, i know)

     

  • Robert Alblas

    Robert Alblas - 2009-08-21

    Allright.. I think I might possibly understand after reading this three times, but I'm clueless how to convert this into source code :)

     

  • Isseu

    Isseu - 2009-08-22

    join me to the proyect abd i help you....

     

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.