Don't know if you looked at this...
-
...but I just saw it and I think it was terrible :( Gawker Hack Release Notes Per the little sister rule I can't describe how I think they left these guys website...just remeber an image of some episode of L&O: SVU Problem is, god knows how many sites store passwords as plain text, and IIRC, DES encryption was used for some things (not user authentification at least) at my last employer systems... Dear hamsters, you don't do this type of storage do you? :(
-
...but I just saw it and I think it was terrible :( Gawker Hack Release Notes Per the little sister rule I can't describe how I think they left these guys website...just remeber an image of some episode of L&O: SVU Problem is, god knows how many sites store passwords as plain text, and IIRC, DES encryption was used for some things (not user authentification at least) at my last employer systems... Dear hamsters, you don't do this type of storage do you? :(
Rosendo Lopez wrote:
Dear hamsters, you don't do this type of storage do you?
Well, CP offers an "email your password if you forget it" option, so the actual password, not just a hash, must be stored somewhere. Encrypted we hope, but still stored in a retrievable form.
-
...but I just saw it and I think it was terrible :( Gawker Hack Release Notes Per the little sister rule I can't describe how I think they left these guys website...just remeber an image of some episode of L&O: SVU Problem is, god knows how many sites store passwords as plain text, and IIRC, DES encryption was used for some things (not user authentification at least) at my last employer systems... Dear hamsters, you don't do this type of storage do you? :(
-
-
Rosendo Lopez wrote:
Exactly where I got it!
Yeah, I saw that your URL was from Coding Horror... just decided to post the link to the main article for everybody else. :)
-
Rosendo Lopez wrote:
Dear hamsters, you don't do this type of storage do you?
Well, CP offers an "email your password if you forget it" option, so the actual password, not just a hash, must be stored somewhere. Encrypted we hope, but still stored in a retrievable form.