Amazon Flaw Lets Password Variants Through

Amazon Flaw Lets Password Variants Through 159

Posted by timothy on Friday January 28, 2011 @08:17PM from the liberal-in-what-you-accept-but-not-here dept.

Wired reports that it has confirmed a password flaw affecting some Amazon accounts. If your password hasn't been changed in a while ("the past several years"), it may be less secure than you'd like. As Wired explains, for these older accounts, "[...] if your password is “Password,” Amazon.com will also let you log in with 'PASSWORD,' 'password,' 'passwordpassword,' and 'password1234.'" The article suggests that Amazon's use of the Unix crypt() tool may be at fault. (Hat tip to E. Maureen Foley for pointing this out.)

Amazon Flaw Lets Password Variants Through

This discussion has been archived. No new comments can be posted.

Search 159 Comments Log In/Create an Account

Comments Filter:

Uhm... (Score:5, Funny)

by Anonymous Coward writes: on Friday January 28, 2011 @08:24PM (#35039696)

Is it supposed to show all of my passwords in the article? Or do you just see stars?

Thankfully... (Score:5, Funny)

by Junta ( 36770 ) writes: on Friday January 28, 2011 @08:34PM (#35039774)

My password of hunter2 was not compromised.

5f4dcc3b5aa765d61d8327deb882cf99 (Score:4, Funny)

by metalmaster ( 1005171 ) writes: on Friday January 28, 2011 @08:41PM (#35039812)

I think its safe to say my password is safe

Re:Uhm... (Score:4, Funny)

by SpooForBrains ( 771537 ) writes: on Friday January 28, 2011 @09:03PM (#35039964)

I see Hunter2

Re:Why exactly is this a problem? (Score:5, Funny)

by MichaelSmith ( 789609 ) writes: on Friday January 28, 2011 @10:12PM (#35040342) Homepage Journal

Just this morning my wife said she had gone to the bank to open an account for our son and they told her this bank has accounts for five people with the same name. We thought his name was less common than that. I asked her why she thought that was a big deal and she said "you know, when you use your name as your password" and I said what?.

passwordpassword (Score:4, Funny)

by Arancaytar ( 966377 ) writes: <arancaytar.ilyaran@gmail.com> on Saturday January 29, 2011 @12:09AM (#35040824) Homepage

I hear the site also accepts minor misspellings, anagrams, close synonyms and Cockney rhyming slang.

Re:Thankfully... (Score:4, Funny)

by smellotron ( 1039250 ) writes: on Saturday January 29, 2011 @03:46AM (#35041482)

Hey that's my ********, you insensitive clod!
What?

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Amazon Flaw Lets Password Variants Through 159

Amazon Flaw Lets Password Variants Through More Login

Amazon Flaw Lets Password Variants Through

Uhm... (Score:5, Funny)

Thankfully... (Score:5, Funny)

5f4dcc3b5aa765d61d8327deb882cf99 (Score:4, Funny)

Re:Uhm... (Score:4, Funny)

Re:Why exactly is this a problem? (Score:5, Funny)

passwordpassword (Score:4, Funny)

Re:Thankfully... (Score:4, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot