Korind, yes, MD5 has been cracked. if i know the hashed value of a password in MD5, i can go to numerous sites and reverse-hash that in a matter of seconds. and here is the kicker. to "crack" a hashing algorithm all you have to do is have a table with an input value for every possible hashed value output. then do a search in your table that matches that hashed value and use the unhashed input as your password. that table has existed for MD5 for a while. there are projects to map out those values for other hashing algorithm out there, and SHA-1 which is a 256 bit hashing formula is like 40% mapped or something like that. SHA-2, sometimes called SHA-512, is a 512 bit formula and there is nowhere near a usable table. remember back when sony and such were hacked by lulzsec and anonymous? all they did was use a script to do a buffer overflow on their forum software, get the hash value for one of their forum admins, and then reverse their MD5 hash, and then go to town. technically you cannot reverse a hashing formula, but if you have access to one of those "rainbow tables" for that hashing formula, then you are golden.