Hughng Posted November 24, 2003 Posted November 24, 2003 How do I decrypt an encrypted MD5 string. My program allow password to be encrypted using MD5 encrypting. Currently the only way I can checkk for valid password is encrypt the password and compare it with the original password. They match then I allow access otherwise don't. My question is how do I decrypt the original password so I can compare with the input from user instead of the current method which encrypt user input and verify with encrypted original password. Thank you. Quote
Leaders dynamic_sysop Posted November 24, 2003 Leaders Posted November 24, 2003 you cant decript MD5 , it's only designed to be encripted Quote
Administrators PlausiblyDamp Posted November 24, 2003 Administrators Posted November 24, 2003 MD5 isn't an encryption algorithm it's a hash - designed to be one way. Not being able to decrypt them is more secure anyway. Is there any reason why comparing hashes is a problem? Quote Posting Guidelines FAQ Post Formatting Intellectuals solve problems; geniuses prevent them. -- Albert Einstein
Hughng Posted November 24, 2003 Author Posted November 24, 2003 Not a big problem but I want to keep track with some information from user system. Ex: The hash is generate from MAC address and HD serial number + user name + private key. I just want them to send me the Hash value then and I retrieve all other information from the hash key instead require them to send out those information. Basically, I just want to build a database of who is using my software. Thank you. Quote
*Experts* mutant Posted November 24, 2003 *Experts* Posted November 24, 2003 Why do you want to keep track of that info? Isn't having it in hashed form enough for you to maybe implement a security system for your app, or whatever you want to do? Quote
Hughng Posted November 24, 2003 Author Posted November 24, 2003 This software is using internal to about 10 - 20 users. I want to build a database so they can query what version software other machines have, their license number and who register it. This information is required to setup a tracking system that recording the exact location of each machine. To make the long story short, I need this information to be able to service any machine using my software and be able to know I should to go (we have 2 buildings and I don't want to go to the wrong one). And I don't want them to have to do anything beside send the hash key at registration time. Currently they have to send me the MAC Address + User Name + Hash key which is already stored the MAC Address + User name + HD serial number. Quote
*Experts* Volte Posted November 24, 2003 *Experts* Posted November 24, 2003 The only thing MD5 is good for is storing things like passwords or other information, and then you can check the MD5 hash of the input against the stored hash. For example:If CalculateMD5(password) = storedMd5 Then CorrectPassword() End IfIf you want to store it so it can be retreived, use some other kind of encoding or encryption. Quote
Hughng Posted November 24, 2003 Author Posted November 24, 2003 Cool. Thank you very much for everyone help. Your helps are greatly appreciated. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.