> On 16 Apr 2001, Chip Turner wrote:
>
> > The modperl book mentions it double hashes to prevent a
> > malicious user from concatenating data onto the values being checked.
> > I don't know if they are referring to this weakness, but I suspect
> > they are. Sadly, the book doesn't seem to offer a reference for the
> > claim as to the specific md5 vulnderability. (Hey Doug, wanna shed
> > some light on that somewhat cryptic passage? :)
>
> I'm sure I recall seeing a book on cryptography mentioned in the footnotes
> somewhere...
The crypto section in Mastering Algoritms with Perl is a pretty good
overview.
- Perrin
