thou hast committed a grave sin

  • 22
    when they store password in md5 and say it is securely hashed
  • 7

    > it's alright man I used a salt
    > looks a code
    > dude its the fucking same unix timestamp you set to `pasword_update_timestamp`
    > yeah that number is so huge nobody will ever guess it
    > seems-legit.png.exe
  • 3
    Once upon a time I worked for a company that stored passworded in plaintext. I was given access to the database, saw the passwords and my mouth dropped open. Immediately I spoke with the manager. He spoke with the relevant team. The solution was to md5 hash the passwords.

  • 1
    @Knossos I feel you bro
  • 0
    @Knossos u from crete?
  • 1
    No, it just sounded cool :P
Add Comment