Re: Crypto Hash ?

From: Pieter Philippaerts (Pieter_at_nospam.mentalis.org)
Date: 11/09/03 

Date: Sun, 9 Nov 2003 15:33:03 +0100

"WJ" <JohnWebb@Yahoo.Com> wrote in message
> I am using SHA1CryptoServiceProvider method to create a password hash at
run
> time. I notice that if I use a 4 bytes password as input, the hash is
> sometimes 4 times longer than the original text input. What determines the
> size of the output hash string "len(hashString)" ?

The length of a hash is fixed. SHA1 always produces a 20 byte hash, MD5
produces a 16 byte hash.

Regards,
Pieter Philippaerts
Managed SSL/TLS: http://www.mentalis.org/go.php?sl

Relevant Pages

  • Re: NetScreen Password Hash
    ... The netscreens use MD5 hashes with the consonants of the word ... NETSCREEN spelled backwords in the hash. ... password hash or a tool to crack the password hash of netscreen 204 config ...
    (Pen-Test)
  • Re: NetScreen Password Hash
    ... I read somewhere that netscreen inserts consonants of the word 'netscreen' backwards into the hash. ... password hash or a tool to crack the password hash of netscreen 204 config ... Need to secure your web apps NOW? ...
    (Pen-Test)
  • RE: Threat vector of running a service using a domain account
    ... does send an NT password hash. ... you can capture the pre-authentication traffic, ... That's the beauty of Kerberos, after the initial auth, the password hash ...
    (Security-Basics)
  • Re: [Full-disclosure] password hash, funny myth in the industry!
    ... Hash: SHA1 ... blah blah blah, this is full-disclosure not some dear diary/myspace ... just password hash(generally SHA1, ... Full-Disclosure - We believe in it. ...
    (Full-Disclosure)
  • Re: phpBB Security Bugs
    ... hex digit in the md5 hash, and allows you to guess that digit's particular ... Each digit would be guessed in 16 tries or less. ... determine any particular password hash. ...
    (Bugtraq)
Quantcast