Beefy Boxes and Bandwidth Generously Provided by pair Networks
more useful options
 
PerlMonks  

Re^4: Status of Recent User Information Leak

by Anonymous Monk
on Aug 02, 2009 at 06:40 UTC ( #785198=note: print w/ replies, xml ) Need Help??


in reply to Re^3: Status of Recent User Information Leak
in thread Status of Recent User Information Leak

Also, hashing the passwords does not make them that much safer. Are you talking md5/sha1 hmac stuff like the Linux shadow files? Well, a few hours with john will get you a huge majority of the passwords I imagine, even with salts.

Absolutely, they had access to all the code base.

Probably this was a bad design decision unique to this particular e2 site.

I just checked, it is the default in the codebase. Maybe other sites wrote updates, but they haven't made it back to sourceforge.


Comment on Re^4: Status of Recent User Information Leak

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://785198]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others browsing the Monastery: (8)
As of 2015-07-30 10:23 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The top three priorities of my open tasks are (in descending order of likelihood to be worked on) ...









    Results (271 votes), past polls