x404.co.uk :: View topic - account suspended

x404.co.uk http://www.x404.co.uk/forum/

account suspended http://www.x404.co.uk/forum/viewtopic.php?f=3&t=18551	Page 3 of 3

Author:

John_Vella [ Wed Mar 20, 2013 6:27 pm ]

Post subject:

Re: Re: account suspended

timark_uk wrote:


	Amnesia10 wrote: Do you think it is worth the admins having a scan of the passwords to see if any have particularly weak passwords advising them to change them?

They should all be hashed, nobody should be able to view any of the passwords.

Mark

My old password was hashed. It was "########" without the speech marks. :roll:

Sorry, that was a bit weak, even for me.

Sent from my GT-N7000 using Tapatalk 2

Author:	paulzolo [ Wed Mar 20, 2013 7:44 pm ]
Post subject:	Re: account suspended
Password updated - as an unrememberable string of random characters. Thankfully, 1Password can remember this for me.

Author:

Amnesia10 [ Wed Mar 20, 2013 8:30 pm ]

Post subject:

Re: account suspended


	paulzolo wrote: Password updated - as an unrememberable string of random characters. Thankfully, 1Password can remember this for me.

Do you ever use the pronounceable option or avoid ambiguous characters?

Author:

paulzolo [ Wed Mar 20, 2013 10:46 pm ]

Post subject:

account suspended

Amnesia10 wrote:


	paulzolo wrote: Password updated - as an unrememberable string of random characters. Thankfully, 1Password can remember this for me.

Do you ever use the pronounceable option or avoid ambiguous characters?

I do use pronounceable, but I still won't be able to remember it.

Author:

Amnesia10 [ Thu Mar 21, 2013 4:45 am ]

Post subject:

account suspended

paulzolo wrote:

Amnesia10 wrote:


	paulzolo wrote: Password updated - as an unrememberable string of random characters. Thankfully, 1Password can remember this for me.

Do you ever use the pronounceable option or avoid ambiguous characters?

I do use pronounceable, but I still won't be able to remember it.

My preference is for unambiguous characters which makes it easier to read out.

Sent from my iPad using Tapatalk.

Author:

JJW009 [ Tue Mar 26, 2013 2:27 pm ]

Post subject:

Re: account suspended

saspro wrote:

timark_uk wrote:


	Amnesia10 wrote: Do you think it is worth the admins having a scan of the passwords to see if any have particularly weak passwords advising them to change them?

They should all be hashed, nobody should be able to view any of the passwords.

Mark

Correct.

We can't see any passwords

Just an example of how weak some hashing is, this journo cracked 45% of 17,000 unsalted md5 hashes in just 3 seconds - once he'd figured out how to use the freely available software, which did take him a few hours:

http://arstechnica.com/security/2013/03 ... d-cracker/

Of course, the 55% he didn't crack were the more secure passwords.

Page 3 of 3	All times are UTC
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/