httpd-modules-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Franz Schwartau <fr...@electromail.org>
Subject Re: New module for anonymous ip logging
Date Wed, 06 Oct 2010 07:49:53 GMT
This is why mod_log_iphash adds a random, unknown 128 character string
in front of the IPv4 address before hashing with MD5. So you have to
search within 64^128 * 2^32 possibilities instead of just 2^32. :-)

On 06.10.2010 07:16, Ted Dunning wrote:
> It is less a matter of time than you calculate.
> 
> For IPV4, you only have 32 bits to search.
> 
> On Tue, Oct 5, 2010 at 4:13 PM, Franz Schwartau <franz@electromail.org>wrote:
> 
>> Yes, of course, but all (cryptographic) hash functions are "vulnerable"
>> to brute force attacks. It's just a question of effort/time.

Mime
View raw message