LoganDark's Content

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

LoganDark's Content

There have been 172 items by LoganDark (Search limited from 10-February 22)

By content type

See this member's

Sort by

Order

#253694 Quality custom-made logos!

Posted by LoganDark on 13 June 2016 - 10:05 AM in Media

Waitdev_, on 13 June 2016 - 10:04 AM, said:

I guess I'll get a new logo.

Text: Waitdev_ (or Waitdev, if it looks better.)

Special style: Material design

Size: Any resolution, though I want it to be square and at least be good resolution.

Font: Capsule X Pro or anything that looks good with material

File format: PNG & JPG

Roboto and Noto are the Material fonts.

Would you like a 2048x2048 logo?

#253598 Quality custom-made logos!

Posted by LoganDark on 12 June 2016 - 03:03 AM in Media

EldidiStroyrr, on 12 June 2016 - 03:00 AM, said:

Krist, man? Krist, man!
Oh btw, I'm using your logo you made for me as the menu button for my LXDE desktop.

lxde...?

BTW, funny quote I found on a website:

Quote

This tool is provided without warranty, guarantee, or much in the way of explanation. Note that use of this tool may or may not crash your browser, lock up your machine, erase your hard drive, or e-mail those naughty pictures you hid in the Utilities folder to your mother. Don't blame me if anything bad happens to you, because it's actually the aliens' fault. The code expressed herein is solely that of the author, and he's none too swift with the JavaScript, if you know what we mean, so it's likely to cause giggle fits in anyone who knows what they're doing. Not a flying toy. Thank you for playing. Insert coin to continue.

#253592 Quality custom-made logos!

Posted by LoganDark on 12 June 2016 - 02:24 AM in Media

Cloud Ninja, on 12 June 2016 - 02:19 AM, said:

Making a donation: Next 10 logo's are on me, will be sending 250 KST from address kpsfygeqox

Thanks!!

Cloud Ninja, on 12 June 2016 - 02:19 AM, said:

Making a donation: Next 10 logo's are on me, will be sending 250 KST from address kpsfygeqox

Might want to update your sig though

#253585 Quality custom-made logos!

Posted by LoganDark on 12 June 2016 - 01:37 AM in Media

NOTE: I WILL NOT BE MAKING MORE LOGOS FOR FREE. YOU MUST PAY ME WITH KST. THE CURRENT PRICE IS 25 KST PER LOGO.

src: OP

#253294 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 11:41 PM in Programs

Anavrins, on 07 June 2016 - 07:55 PM, said:

LoganDark, on 07 June 2016 - 07:54 PM, said:

#REKT ANY OTHER PASSWORD SYSTEM, MINE IS OFFICIALLY THE (first) MOST SECURE SYSTEM ON THE FORUMS.

You're welcome.

Thanks lol, without your expertise in cryptography this wouldn't have been possible

#253283 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 07:54 PM in Programs

Anavrins, on 07 June 2016 - 07:50 PM, said:

Dragon53535, on 07 June 2016 - 07:37 PM, said:

What? Now I'm curious, are you salting the hashed password? Or the password and then hashing it?

He's using an algorithm called pbkdf2 that I implemented.
Usage is simple, you feed it the raw password, and an unpredictable salt, you let the rest to the algorithm.
Resalting the hash is not insecure, it's just a unnecessary step.

LoganDark, on 07 June 2016 - 07:46 PM, said:

if you have password HI with salt 12345678 then the rainbow table might have a password called HI12345678 which ends up being the same hash, it wouldn't take much expertise to subtract 12345678 from HI12345678 to get HI.

If you concatenate the salt with the hash, you're doing it wrong, PBKDF2 doesn't concatenate the salt with the password, it is integrated with the hash via HMAC.

Oh.

#REKT ANY OTHER PASSWORD SYSTEM, MINE IS OFFICIALLY THE (first) MOST SECURE SYSTEM ON THE FORUMS.

Edit: sorry double post

Luca_S, on 07 June 2016 - 07:52 PM, said:

LoganDark, on 07 June 2016 - 07:46 PM, said:

Errrm that is salting the password and then hashing it...

I didn't understand pdbfkdksshspdhj2 until anavrins told me... My system used to concatenate the salt to the password and then hash with SHA256, now it uses PBDKSDGH2.

#253280 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 07:46 PM in Programs

#253277 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 07:38 PM in Programs

Dragon53535, on 07 June 2016 - 07:37 PM, said:

What? Now I'm curious, are you salting the hashed password? Or the password and then hashing it?

Edit: Nvm, you didn't realize it was a pregenerated table of hashes.

I'm salting the password then hashing it. Salting the hash is extremely insecure and horrible...

#253272 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 07:03 PM in Programs

Anavrins, on 07 June 2016 - 07:00 PM, said:

LoganDark, on 07 June 2016 - 06:35 PM, said:

what big ol' paragraph?

A little bit of searching doesn't hurt... http://www.computerc...post__p__251479

oh, wait, you were talking about the table of completed hashes?

yes, that would be hard to do

then I'm keeping the salt

#253269 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 06:59 PM in Programs

Luca_S, on 07 June 2016 - 06:57 PM, said:

LoganDark, on 07 June 2016 - 06:40 PM, said:

Lyqyd, on 07 June 2016 - 01:32 PM, said:

Moved to Programs.

this is definitely a utility, but okay...

We discussed that earlier and obviously Lyqyd(or some other mod) didn't like that discussion to be here(Else he wouldn't have cut it off).
But now to the salt:
If the user get's access to the files of the computer(Disk, or maybe an evil server owner) and your password is not salted he can use a rainbow table, that he calculates once and then uses EVERY time he finds a badly programmed password lock. If you salt your password the attacker needs to recalculate the rainbow table for every salts, therefore making cracking slow. So keep the functionality.

But you don't need a rainbow table for the salt, you can just use the one stored in the file. That's what I'm talking about, just use the same rainbow table with whatever salt is in the file.

#253263 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 06:40 PM in Programs

Lyqyd, on 07 June 2016 - 01:32 PM, said:

Moved to Programs.

this is definitely a utility, but okay...

#253262 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 06:35 PM in Programs

Anavrins, on 07 June 2016 - 05:45 PM, said:

I've made a big ol' paragraph explaining why salts are important, so you should probably keep that there.
Salts are always stored with the hashes, they're meant to be "visible", they're not secrets like your passwords.
The only important thing about salts you should be worried is that they should not be predictable, that is, not within a list of 65535 possibilities.
Other than that, the way Logan is currently doing is perfectly fine.

what big ol' paragraph?

#253250 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 07 June 2016 - 01:47 PM in Programs

Dragon53535, on 06 June 2016 - 09:22 PM, said:

Do you also know that you shouldn't try to resalt a password because then that requires you to store a password on disk to resalt it, unless for whatever reason you decide to resalt the hash, which would require you to keep track of two salts in order per user.

No, resalting uses the input from the user (which we know is the correct one because it hashes the same as the stored password when using the old salt) with a new salt to create a new hash which overwrites the previous one. I've tested it and it's currently working.

Edit: I don't know if I should keep the salting functionality at all, because it's stored in the file anyway...

#252915 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 03 June 2016 - 09:54 PM in Programs

EldidiStroyrr, on 03 June 2016 - 09:39 PM, said:

LoganDark, on 03 June 2016 - 09:34 PM, said:

EldidiStroyrr, on 03 June 2016 - 09:33 PM, said:

How would that work? I think a cool thing to have is the salt of the password to be a scrabbled version of the password.

No. Having a salt derived from the password would defeat the purpose of the salt, which is to add an extra layer of security.

Why is that? The cracker doesn't know the key, and to use a rainbow table, you need the salt. Maybe I'm missing something?

in other words, the cracker won't need to know the salt, just the rainbow table, because you can calculate the salt from the passwords, ruining the entire purpose of the salt

#252913 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 03 June 2016 - 09:40 PM in Programs

EldidiStroyrr, on 03 June 2016 - 09:39 PM, said:

LoganDark, on 03 June 2016 - 09:34 PM, said:

EldidiStroyrr, on 03 June 2016 - 09:33 PM, said:

How would that work? I think a cool thing to have is the salt of the password to be a scrabbled version of the password.

No. Having a salt derived from the password would defeat the purpose of the salt, which is to add an extra layer of security.

Why is that? The cracker doesn't know the key, and to use a rainbow table, you need the salt. Maybe I'm missing something?

yes, but if it's derived from the password, the password is already the salt, it just takes a few steps that will always be the same to make the salt.

the purpose of a salt is having another part of the password to calculate

#252911 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 03 June 2016 - 09:34 PM in Programs

EldidiStroyrr, on 03 June 2016 - 09:33 PM, said:

How would that work? I think a cool thing to have is the salt of the password to be a scrabbled version of the password.

No. Having a salt derived from the password would defeat the purpose of the salt, which is to add an extra layer of security.

#252907 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 03 June 2016 - 09:22 PM in Programs

I'd like your opinion on something real quick.

Do you think my password system would benefit from changing the salt every time a user enters his password correctly?

For security reasons?

#252827 [V4.1 COMING!] LoganDark's Password Lock

Posted by LoganDark on 02 June 2016 - 09:30 PM in Programs

TNT_Nolan, on 02 June 2016 - 09:28 PM, said:

Good idea, you could use a rainbow table though to break the encryption.

yes, but I will likely release a new version before that can be calculated
besides, the salts can be calculated (at the moment) but the password can not

#251726 PAIN - NFP+NFT+BLT+GIF+UCG support, block characters, undo buffer, fill tool,...

Posted by LoganDark on 21 May 2016 - 03:00 AM in APIs and Utilities

Bomb Bloke, on 21 May 2016 - 01:14 AM, said:

C-C-C-Combo edit! Yeah, let's not abuse the forum quote feature.

First of all, we weren't abusing it.
Second of all, it wasn't causing any trouble.
Third of all, you don't need to "C-C-C-Combo Edit!" it.

#251694 Where are all my posts?

Posted by LoganDark on 20 May 2016 - 09:07 PM in General

Aw, I lost lots of very important posts on my free logos thread.

#251693 PAIN - NFP+NFT+BLT+GIF+UCG support, block characters, undo buffer, fill tool,...

Posted by LoganDark on 20 May 2016 - 09:03 PM in APIs and Utilities

Had windows all my life past the release of Windows 10. Got an 8-year-old MacBook (that's now BROKEN, thanks cousin) and on Feb 21, 2016 got a MacBook Pro. Completely ditched my Windows machine for this thing. Awesome. It can run everything but MC shaders with over 60 FPS (~~CURSE YOU INEFFICIENT RESOURCE-HOGGING OVERDONE SHADERS~~)