[wp-hackers] Rethinking check_admin_referer()

Brian Layman Brian at TheCodeCave.com
Fri Apr 21 22:22:07 GMT 2006

Robert Deaton wrote:
>Even though collisions can be generated relatively quickly for MD5 now, 
>we don't have to worry,
Too true.  

Yes, you can tunnel through an md5 in 17 seconds and a commercial pc

But for most blogs, we'd be lucky to consistently have the webpage fully
refresh in just 17 seconds.


More information about the wp-hackers mailing list