tags:

views:

103

answers:

2
+2  Q: 

How does Noah Classifieds encrypt their passwords?

Here are some examples:

db: 35273f5c7b3fb45a
actual: 5093625

db: 272beab9517a8835
actual: 7091343

According to http://hash-it.net/ it's not MD5 or SHA1.

A: 

I believe it is being salted, as none of the hashes on http://www.hashemall.com/ worked. You can read more about salting here.

Javed Ahamed  2009-07-29 00:56:59
+1  A: 

I finally got a reply from the developers:

"The native 'password' function of MySql is used to encode the passwords. You can find it in the 'getPassword' function of 'gorum/dbproperty.php'"

RD  2009-07-29 12:16:38

related questions

How to implement password protection for individual files?
Encrypting appSettings in web.config
Usefulness of SQL Server "with encryption" statement
How can I use a key blob generated from Win32 CryptoAPI in my .NET application?
CodeReview: Tiny Encryption Algorithm for arbitrary sized data
Simple encryption implementation in C
Which hard disk encryption software to choose?
Passing untampered data from Flash app to server?
How do I prevent replay attacks?
Is there a best .NET algorithm for credit card encryption?
Encrypt data from users in web applications
How to encrypt one message for multiple recipients?
Two-way password encryption without ssl
What's the answer to this Microsoft PDC challenge?
GPG: How does key signing work and how is it done?
Secure Online Highscore Lists for Non-Web Games
Programmatically encrypting a config-file in .NET
How do I use 3des encryption/decryption in Java?
Encryption in C# Web-Services
Suitable alternative to CryptEncrypt
Can a proxy server cache SSL GETs? If not, would response body encryption suffice?
C# - CryptographicException: Padding is invalid and cannot be removed
How can I encode xml files to xfdl (base64-gzip)?
How do I add SSL to a .net application that uses httplistener - it will *not* be running on IIS
Encrypting Passwords