Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
@hatemyjob The function name suggests to encrypt something when all it does is computing a hash, and even a cryptographically insecure one.
-
Maybe something from legacy code where it was supposed "to be done later"
In my app I have something like this for like 2 years :
function encryptString(str){
//logic will be added later
return str;
} -
@Fast-Nop to be fair, in the security world we use MD5 because it's so good for ID'ing a lot of things... SSL traffic, threat intel, malware, files, etc...
Really useful hash because of it's ubiquity and it's computational cheapness.
Not very useful for ENCRYPTION though! -
@arcsector Yeah, I even use CRCs for hashing if the amount of items is sufficiently small as not to run into the birthday paradoxon. And both CRCs and MD5 for error protection when copying.
-
@Fast-Nop i've been having conversations about the lack of built-in checksum support for a lot of modern apps recently, and the answer has always been "nobody uses it"
To which i respond "How many times have you had to answer this question?" To which the response is either "idk" or "huh, good point". It's a vital part of dynamic apps, and even if your app is built on hashes you should still understand that support makes you a more viable product. -
@Jilano Not really. At least the structure is in place. Now when (or if) we actually decide to implement it, all of the code uses it already.
-
Maer16875yVery nifty. The uselessness of the function is well hidden via the introduction of a pointless variable and thus an additiinal line, rather than just doing
return MD5(otp);
Brilliant.
Just saw this in the code I'm reviewing:
function encryptOTP(otp){
var enc = MD5(otp);
return enc;
}
rant
#why #naming #crypto #encryption #hashing