2010-01-16, 10:52 PM
If someone has a list of MD5's, I don't think they would use rednoize, gdta, etc. It doesn't seem like these sites have an option to actively crack passwords, but only store a database of cracked ones.
They could be using a program with rainbow tables to crack passwords themselves : http://www.codinghorror.com/blog/archives/000949.html
"It can crack the password "Fgpyyih804423" in 160 seconds."
That was for LD/NT, but there are tables for MD5 also: http://project-rainbowcrack.com/buy.htm
One MD5 table in this $300 package has 96.8% of all alphanumeric combinations up to 9 characters long.
However, MD5 takes quite a while to crack. If you change your password often (before they crack your old one), and use long passwords(extend the time it takes to crack), it may be possible to stay secure.
They could be using a program with rainbow tables to crack passwords themselves : http://www.codinghorror.com/blog/archives/000949.html
"It can crack the password "Fgpyyih804423" in 160 seconds."
That was for LD/NT, but there are tables for MD5 also: http://project-rainbowcrack.com/buy.htm
One MD5 table in this $300 package has 96.8% of all alphanumeric combinations up to 9 characters long.
However, MD5 takes quite a while to crack. If you change your password often (before they crack your old one), and use long passwords(extend the time it takes to crack), it may be possible to stay secure.

