Unsalted Hashes? Argghh!

leave a comment »

Unsalted Hashes? Argghh! And “The unsalted hashes use SHA-1 encryption, and while it is somewhat secure, it can still be cracked if the user employs a simple dictionary password.” I do not agree at all with the ‘somewhat secure’ as they are not even SALTED… that means all dictionary possibilities already have been done. Read Adrianus Warmenhoven‘s post:  WHY NOT EVER EVER TO USE MD5 OR SHA1 TO HASH PASSWORDS: http://www.warmenhoven.co/2012/03/06/do-not-use-md5-or-sha1-to-simply-hash-db-passwords/

glyn moody Bad day for #LinkedIn: 6.5 million hashed passwords reportedly leaked – change yours now – http://tnw.co/Md9yBq whoops Bad day for LinkedIn: 6.5 million hashed passwords reportedly leaked – change yours now Already in the spotlight over concerns that its iOS app collects full meeting notes and details from a device’s calendar and sends them back to the company in plain text, LinkedIn … View or comment on Daniël Crompton’s post »

Written by Daniël W. Crompton (webhat)

June 8, 2012 at 2:06 am

Posted in Uncategorized

Tagged with linkedin, security