I´m evaluating this project to see if it is safe to use.
I constructed a small test and i would like some feedback as to what i should
do with the result.
Here below is the result from example1 which comes with the package.
orignial POST:
Array ( [jCryption] =>
5f5351bae6184669d48432b17cd3240507fb8c16423b0b9e979a5697d353e0a76ac1faf7341213f8
2048e42530687dbb8c63d849270efbe441203299739952c90e333145cb4eba7ec692a429479fd7eb
2c8d48cf3fa3082817c2b828d41b5e723823a21e6b91ada759aa928f83de12e9f304d42817d2d5d7
5affe7d1fca2c06a
d4ef744ea5259d1a891273bb1f3a6ae0feabb1786326310f08b276559fc046676e36fad23d03be0c
cbb2d4455f96feb1c563486b1a5cfc94d80945b1ecf788d475dc84406fd9fec4fb9cfa43dd7c2597
651ff1067ad0c99e0bd28782ff3c27ac3a6abca97562de859e1c8e3a5fa520f43250f5f267f98982
d867126ecd1e06ce )
decrypted POST:
Array ( [Sex] => male [Firstname] => John [Lastname] => Wayne [Email] =>
john@wayne.com [Food] => Array ( [0] => pizza [1] => salad ) [age] => under 18
[likes] => Array ( [0] => rainy wheater [1] => small cats [2] => I like
everything ) )
It is the decrypted and encrypted version of the same post.
in the attached file i take the encrypted data from this result and try to
bruteforce it to reveal any data.
what conclusion shall i draw from this?
Generate my own 100_1024_keys.inc.php file?
Original issue reported on code.google.com by emil.ham...@gmail.com on 18 Aug 2011 at 11:22
Attachments:
Original issue reported on code.google.com by
emil.ham...@gmail.comon 18 Aug 2011 at 11:22Attachments: