Hello Matt, I am just using md5 to generate a hash for items descriptions that we fetch. It is just a space saving measure. There are no security issues at all. I don't know if there is an easier/faster way in php, but md5 seems to be working well. Regarding md5's security, the login system in the svn version uses md5 to authenticate the user. I think it could easily be moved to SHA-1, since php supports it and there are javascript implementations of it. best, Sameer On Tue, Jan 03, 2006 at 10:55:14PM -0600, Matthew Lange wrote: > Date: Tue, 03 Jan 2006 22:55:14 -0600 > From: Matthew Lange <mmlange at yahoo.com> > To: gregarius-dev at sinless.org > Subject: Re: [greg-dev] magpie's cache > Reply-To: gregarius-dev at sinless.org > > It sounds like you're using MD5 to generate unique identifiers for the > cache. If you're looking to generate unique identifiers, you should > really use a UUID generator for this (see RFC 4412). > > OTOH, If you really do need a one-way hash function, I'd highly > recommend SHA1 over MD5 due to serious security flaws in MD5. > > Disclaimer: I haven't looked at the code to see what you're doing. I'm > a security guy, so the word MD5 always makes me uneasy. > > > Matt > _______________________________________________ > gregarius-dev mailing list > gregarius-dev at sinless.org > http://sinless.org/mailman/listinfo/gregarius-dev