«
»

crypt() web interface

In case someone needs it (I do): I wrote a small web interface that quickly crypt()’s a string, e.g. when you need to write a .htaccess file and don’t have htpasswd available. It outputs DES, MD5 and SHA1 with random salts and salt-less md4, md5, sha1 and sha256. Maybe I’ll add MySQL password hashing too.. at least when I first need it 😉

Oh, and remember.. the password gets sent to my server without any encryption at all (and no, it’s not being saved here) 🙂

This entry was posted on Sunday, March 25th, 2007 at 6:02 pm and is filed under Technology. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

2 Responses to “ crypt() web interface ”

  1. grizzly Says:
    March 27th, 2007 10:10 am

    Nice. Could you make your script available for https?

  2. aj Says:
    March 27th, 2007 8:57 pm

    grizzly: Sorry, that’s not currently planned and wouldn’t make much sense anyway. As I’m for sure not going to buy a commercial ssl certificate for the server there is no way to verify it’s identity. The connection itself might be encrypted, but you won’t be able to tell if you are in fact communicating with the right server or if someone is just performing a MITM attack.