LinkedIn Password Leak: Salt Their Hide 192

Posted by Soulskill on Friday June 08, 2012 @12:59PM from the i-see-what-you-did-there dept.

CowboyRobot writes "Following yesterday's post about Poul-Henning Kamp no longer supporting md5crypt, the author has a new column at the ACM where he details all the ways that LinkedIn failed, specifically related to how they failed to 'salt' their passwords, making them that much easier to crack. 'On a system with many users, the chances that some of them have chosen the same password are pretty good. Humans are notoriously lousy at selecting good passwords. For the evil attacker, that means all users who have the same hashed password in the database have chosen the same password, so it is probably not a very good one, and the attacker can target that with a brute force attempt.'"

LinkedIn Password Leak: Salt Their Hide

This discussion has been archived. No new comments can be posted.

Search 192 Comments Log In/Create an Account

Comments Filter:

Resume (Score:5, Funny)

by tanujt ( 1909206 ) writes: on Friday June 08, 2012 @01:14PM (#40259553)

So if I crack other people's passwords on Linkedin, can I put that up as a skill in my resume on Linkedin?

Obese americans (Score:1, Funny)

by Anonymous Coward writes: on Friday June 08, 2012 @01:19PM (#40259629)

Always wanting to salt everything. Maybe LinkedIn just wanted to be leaner??

Re:Resume (Score:5, Funny)

by SydShamino ( 547793 ) writes: on Friday June 08, 2012 @01:33PM (#40259841)

You can put it on everybody's resume!

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

LinkedIn Password Leak: Salt Their Hide 192

LinkedIn Password Leak: Salt Their Hide More Login

LinkedIn Password Leak: Salt Their Hide

Resume (Score:5, Funny)

Obese americans (Score:1, Funny)

Re:Resume (Score:5, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot