[security flaw] Ubuntu is a plain text offender
Steve Flynn
anothermindbomb at gmail.com
Mon May 23 20:20:23 UTC 2011
On Mon, May 23, 2011 at 5:58 PM, Kent Borg <kentborg at borg.org> wrote:
> Steve Flynn wrote:
>>
>> Acorss 54 sites, my average password length is 20.1 bytes (I try to
>> generate 32 byte passwords by default but some sites restrict me down
>> to say 12).
>
> Be warned that sometimes passwords are silently truncated to just a few
> bytes, accepting long passwords, but ignoring all the good entropy.
Yup - I'm aware. Major part of my job.
--
Steve
When one person suffers from a delusion it is insanity. When many
people suffer from a delusion it is called religion.
More information about the ubuntu-users
mailing list