Punishing poor security by copyrighting common unsalted SHA-3 passwords

Punishing poor security by copyrighting common unsalted SHA-3 passwords
Posted at 8pm on 31/08/10 | no comments | Filed Under: Security, Software read on

Alphanumeric passwords with enforced numbers – more “Security Theatre”

Reading through TechCrunch’s Depressing Analysis Of RockYou Hacked Passwords:

According to a study by Imperva, [the most common password is] “123456,” followed by “12345,” “123456789″ and “Password,” in that order. “iloveyou” came in at no. 5.

I generate my passwords with APG, which generates passwords like this:

  • Irikyak6
  • RaypHiam6
  • radsErn2
  • reebrIjLi

As you can tell, these are for all intents and purposes, secure. However, some sites out there insist that the last one on the list is insecure. Why? It

Posted at 1am on 22/01/10 | 1 comment | Filed Under: Software read on

About

I’m a director of Radix Financial Software (Pty) Ltd, a divison of Qualica Technologies (Pty) Ltd, in Johannesburg, South Africa. I specialise in financial software development on databases, using Sybase’s SQLRemote and SQLAnywhere products.

Outside of work, I’m the proud significant-other of Siobhan Kotze, who runs her own Marketing and Events company.

We live in Killarney, Johannesburg, South Africa, with our two cats, Pippin and Sharjah.

I’ll put up a more detailed biography separately sometime in the near future.

Monthly Archives