Title: Rainbow Tables on Hard Drive - interested ? Post by: SmokeTooMuch on February 21, 2011, 10:01:52 PM Hi, I'm just curious.
Would you buy hard drives (up to 2TB) with rainbow tables(lm, ntlm, md5, sha1, ...) on it ? Title: Re: Rainbow Tables on Hard Drive - interested ? Post by: riX on February 21, 2011, 10:36:14 PM Hi, I'm just curious. Would you buy hard drives (up to 2TB) with rainbow tables(lm, ntlm, md5, sha1, ...) on it ? Do you have sha256? :P Title: Re: Rainbow Tables on Hard Drive - interested ? Post by: fabianhjr on February 21, 2011, 11:28:30 PM Hi, I'm just curious. Would you buy hard drives (up to 2TB) with rainbow tables(lm, ntlm, md5, sha1, ...) on it ? Do you have sha256? :P Title: Re: Rainbow Tables on Hard Drive - interested ? Post by: SmokeTooMuch on February 21, 2011, 11:42:12 PM Hi, I'm just curious. Would you buy hard drives (up to 2TB) with rainbow tables(lm, ntlm, md5, sha1, ...) on it ? Do you have sha256? :P Title: Re: Rainbow Tables on Hard Drive - interested ? Post by: dsg on February 21, 2011, 11:51:54 PM Hi, I'm just curious. Would you buy hard drives (up to 2TB) with rainbow tables(lm, ntlm, md5, sha1, ...) on it ? I might if you have the A5/1 tables :) http://reflextor.com/e100torrents/ Metered internet sucks balls. I've already gone over my monthly quota, so my 100Mbit/s fiber is throttled to 64Kbit/s. Title: Re: Rainbow Tables on Hard Drive - interested ? Post by: Nefario on February 22, 2011, 01:35:08 AM This is why brcypt was created, to make rainbow table attacks more difficult. And if a salt is used then it's pretty computationally expensive as well as time expensive.
Remember boys and girls, always use bcrypt + salt for all your password hashing needs. Title: Re: Rainbow Tables on Hard Drive - interested ? Post by: BitterTea on February 22, 2011, 03:06:04 AM This is why brcypt was created, to make rainbow table attacks more difficult. And if a salt is used then it's pretty computationally expensive as well as time expensive. Remember boys and girls, always use bcrypt + salt for all your password hashing needs. Actually, I believe this is outdated advice. My understanding of best practice is to use HMAC. Here's the link to a stack overflow question that I recently read: http://stackoverflow.com/questions/401656/secure-hash-and-salt-for-php-passwords/401684#401684 |