[wp-hackers] Rethinking check_admin_referer()
false.hopes at gmail.com
Fri Apr 21 22:30:58 GMT 2006
On 4/21/06, Owen Winkler <ringmaster at midnightcircus.com> wrote:
> /me bludgeons himself to death with the cryptographic hash tutorial he
> had prepared for this thread before Robert said it succinctly, and then
> takes shelter from the impending explosion of doom from the md5 to sha1
> conversion of passwords.
Pfft, if we're going to move hashing algorithms, let's get something
with longevity. sha512 all the way.
By the way, Doug: hash('sha512', 'password'); <-- sha512 native to PHP
(but 5.1.2 only)
More information about the wp-hackers