The client uses rt for md5 encryption. write more. when you log on to the rs forum, you can see that the client uses md5 encryption to encrypt the password. people will intercept the encrypted md5 and use md5 to log on, encryption is not used for encryption. it just hides the original password package. & nbsp; ------ solution ------------------ reference: Quote: reference: the meaning of the landlord should be like this: obtain the login's md5 encrypted password, perform anti-decryption, and log on to the client for md5 encrypted usage.
Rt Ah, let's write more. we can see that when logging on to the rs Forum, the client performs md5 encryption on the password. people will intercept the encrypted md5 and use md5 to log on. what if encryption is not encrypted, just hiding the original password package.
------ Solution --------------------
Reference:
Quote: reference:
Quote: reference:
The meaning of the landlord should be like this: Get the login's md5 encrypted password, anti-decryption, and then login
Md5 can be decrypted, which is also high.
Can't MD5 encryption be decrypted?
Will you? please kindly advise
------ Solution --------------------
It depends on the degree of encryption.
------ Solution --------------------
The key is Interception. you can use https.
------ Solution --------------------
Md5 + nonce each request is inconsistent with the string md5, and it cannot be used after being intercepted.
Why is md5 encryption useless on the client?
------ Solution --------------------
Generate the verification string, among which md5 ("The content cannot be fixed ")
