[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] #warning -- DICE.COM insecure passwords

job / recruiter website dice.com use ancient crypt() hash function.
passwords limited to seven characters. cracking user passwords quite
simple. be very afraid of future hash / cracked password dump. maybe
dice.com should improve their security to avoid public shaming?

#warning

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/