[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Windows .PWL cracker implemented as a Word Basic virus

To: [email protected] (Dan Bailey)
Subject: Re: Windows .PWL cracker implemented as a Word Basic virus
From: "Perry E. Metzger" <[email protected]>
Date: Sun, 10 Dec 1995 17:14:01 -0500
Cc: [email protected]
In-Reply-To: Your message of "Sat, 09 Dec 1995 00:47:44 EST." <[email protected]>
Reply-To: [email protected]
Sender: [email protected]


Dan Bailey writes:
> No, but they're doing something that makes me very uncomfortable:  As
> I read this, they're hashing the password and some other user
> information using MD4 then doing some proprietary permutations on
> that.  Given their record with security, I'd rather they used straight
> MD4, rather than throwing in something that we can't analyze.

MD4 has been broken. I thought that was common knowledge. MD5 is still
safe, of course.

Perry

Follow-Ups:
- Re: Windows .PWL cracker implemented as a Word Basic virus
  - From: SINCLAIR DOUGLAS N <[email protected]>

References:
- Re: Windows .PWL cracker implemented as a Word Basic virus
  - From: [email protected] (Dan Bailey)

Prev by Date: Re: Escrow expectations
Next by Date: Re: Free calls to Govt (fwd)
Prev by thread: Re: Win NT proprietary pw encryption (Was: Re: Windows .PWL cracker...)
Next by thread: Re: Windows .PWL cracker implemented as a Word Basic virus
Index(es):
- Date
- Thread