Fork me on GitHub

Project Notes

#229 md5

Are you still using MD5 in PHP!?

Notes

MD5 is a cryptographically broken but still used for hashing.

PHP has an md5 string function

Example

See to_md5.php - a simple wrapper for the md5 function:

$ php to_md5.php QNKCDZO QNKCDZO as md5: 0e830400451993494058024219903391

MD5 Comparisons

Always use triple equals ===. Why? …

$ php example.php
240610708 as md5: 0e462097431906509019562988736854
QNKCDZO as md5: 0e830400451993494058024219903391
md5(240610708) == md5(QNKCDZO) : true (!!!)
  -> This comparison is true because both md5() hashes start '0e' so PHP type juggling understands these strings to be scientific notation.  By definition, zero raised to any power is zero.
md5(240610708) === md5(QNKCDZO) : false
  -> always use the triple equals === for comparing stirng values to avoid all the quirks and pitfalls.

Credits and References

  • MD5 wikipedia
  • md5 - PHP function reference
About LCK#229 php

This page is a web-friendly rendering of my project notes shared in the LittleCodingKata GitHub repository.

Project Source on GitHub Return to the LittleCodingKata Catalog
About LittleCodingKata

LittleCodingKata is my collection of programming exercises, research and code toys broadly spanning things that relate to programming and software development (languages, frameworks and tools).

These range from the trivial to the complex and serious. Many are inspired by existing work and I'll note credits and references where applicable. The focus is quite scattered, as I variously work on things new and important in the moment, or go back to revisit things from the past.

This is primarily a personal collection for my own edification and learning, but anyone who stumbles by is welcome to borrow, steal or reference the work here. And if you spot errors or issues I'd really appreciate some feedback - create an issue, send me an email or even send a pull-request.

Follow the Blog follow projects and notes as they are published in your favourite feed reader