Is MD5 ok to use if salted?

Question

This post: http://www.gaiaonline.com/journal/?mode=view&post_id=19734573&u=8357925

Said that salted MD5 is ok but regular MD5 would not be ok. I am a bit confused about this and would apprecaite a response.

Even salted MD5 is comically weak. Don't take advice on cryptography from non-cryptographers. — Stephen Touset, Oct 27 '15 at 04:30
http://security.stackexchange.com/questions/19906/is-md5-considered-insecure — Kami, Oct 27 '15 at 06:00
That is duplicate question: http://security.stackexchange.com/questions/19906/is-md5-considered-insecure — , Oct 27 '15 at 06:06

score 3 · Answer 1 · answered Oct 27 '15 at 04:24

3

The solution is garbage because they store unsalted MD5 hashes of passwords in the database. That is the weakest link in the solution. Nothing else matters.

answered Oct 27 '15 at 04:24

Neil Smithline

14,702
4
38
55

Okay, glad I wasn't imagining things. – Oct 27 '15 at 04:26
3

Even if they stored a salted MD5, it would be garbage. – Stephen Touset Oct 27 '15 at 04:31

Is MD5 ok to use if salted?

1 Answers1