Last I checked, MD4 wasn't considered cryptographically secure. That's why MD5 became the standard. We really should use something like EGD for any kind of critical entropy generation. Yours Truly, Dan Kaminsky DoxPara Research http://www.doxpara.com