Send News. Want a reply? Read this. More in the FAQ.   News Forum - All Forums - Mobile - PDA - RSS Headlines  RSS Headlines   Twitter  Twitter
User Settings
LAN Parties
Upcoming one-time events:

Regularly scheduled events

Report this Comment
Use this form to report the selected comment to the moderators. Reporting should generally be used only if the comment breaks forum rules.

33. Re: Security Breach Aug 9, 2012, 22:58 The Pyro
Hashed and salted tables are useless

Unfortunately that's not entirely accurate. If the salting algorithm is known, or can be deduced from a few accounts with known passwords, then it becomes relatively easy to determine which accounts are using common passwords. You wouldn't be able to brute-force a specific account using this technique. But if you suspect that a lot of users have the password "zergling" then you can quickly calculate the hashes for that and compare them to the hashes in the database. That'll gain you access to several accounts.

The moral of the story is that you still need a strong password even if you know it's going to be hashed.
Login Email   Password Remember Me
If you don't already have a Blue's News user account, you can sign up here.
Forgotten your password? Click here.


Blue's News logo