Punishing poor security by copyrighting common unsalted SHA-3 passwords

Punishing poor security by copyrighting common unsalted SHA-3 passwords
Posted at 8pm on 31/08/10 | no comments | Filed Under: Security, Software read on

Alphanumeric passwords with enforced numbers – more “Security Theatre”

Reading through TechCrunch’s Depressing Analysis Of RockYou Hacked Passwords:

According to a study by Imperva, [the most common password is] “123456,” followed by “12345,” “123456789″ and “Password,” in that order. “iloveyou” came in at no. 5.

I generate my passwords with APG, which generates passwords like this:

  • Irikyak6
  • RaypHiam6
  • radsErn2
  • reebrIjLi

As you can tell, these are for all intents and purposes, secure. However, some sites out there insist that the last one on the list is insecure. Why? It

Posted at 1am on 22/01/10 | 1 comment | Filed Under: Software read on

About

Welcome!

I’m a software architect, project lead, and software development manager living in London.

In January 2011, my wife Siobhan Pearson and I were married. We’re the sum of what we do, but also we’re the sum of who we spend our time with, and I’m proud to spend my time with Siobhan, and honoured that she chooses to spend her time with me. Thank you!

In Johannesburg, South Africa, I was one of the founders (in 1999) of Qualica Technologies (Pty) Ltd, a Software solutions provider. I was also a director of Radix Financial Software (Pty) Ltd, a division of Qualica.

I specialise in financial software development using Sybase ASE, SQLAnywhere, and Perl on Linux/Unix. In recent years I’ve spent more time with Ruby on Rails, and have become a “quiet evangelist” for using it where it’s technically appropriate.

I’ve written part of a book on the Squid Proxy server, and worked with Linux, Perl, and Sybase since 1995, 1996, and 1998 respectively.

We live in London near Kew Gardens, with our two cats, Pippin and Sharjah.

Monthly Archives

Recently

Categories