Below is an interesting video explanation of how bcrypt works to make it more difficult to crack the hashed passwords:
I found out today that Weebly was hacked. Apparently, they lost their bcrypt encrypted passwords and IP's associated with user accounts back in Feburary, and the hashed list turned up and some nice people told Weebly about it. Their email to me, alerting users to the breach, said they are difficult to read or decode, but they said folks should still change their passwords (duh). Good news is that Weebly seems to have reacted quickly once they were made aware. Best practice is to use different passwords for different accounts, a good password manager will help with this. Below is an interesting video explanation of how bcrypt works to make it more difficult to crack the hashed passwords: And here is another cool video on how hashed passwords can be cracked using "rainbow lists" or brute force techniques, not exactly applicable to bcrypt I think since it would seem that somebody would have to crack the "salt/s" and then create a new rainbow list to crack them all, with the added handicap of the "cost factor" gumming up the process of creating the list - at least what I reckon based on watching a couple youtube videos :D
0 Comments
Leave a Reply. |
Stoopid MeWelcome to my Stoopid corner of teh Internet. It's mostly gonna be 3D printing stuff, but I also post some recipes, projects, and the occasional rant here as well. More Stoopid stuff is updated regularly. Archives
December 2024
Categories |