Tom Chiverton wrote: > It's not defeatable in any useful sense. ::snip:: > Likewise, if I give you a MD5 hash of my password, you can't tell me what my > password is.
I cannot necessarily tell you what your password is. However, I can determine a string with the same hash value, such that it will work just as well as your password. It might be a 197 character piece of junk, but it will still work. Of course, "I" in this case is a hypothetical me who had read about how to actually accomplish this, as opposed to having read about how it is possible. --Ben ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Create robust enterprise, web RIAs. Upgrade & integrate Adobe Coldfusion MX7 with Flex 2 http://www.adobe.com/products/coldfusion/flex2/ Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:272171 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
