Joss Weatherby
Banned

Registered: May 2008
Location: The Pacific Northwest, of course
|
|
|
| quote: | Originally posted by Viber
That's a brilliant idea |
Throw in something like 3s for Es and other random switch outs (using a sequence of non-alphanumeric characters for whitespaces) and you have a password that is very secure. Bruteforcing it would take a huge amount of time and any system that has lockouts would make it almost impossible to get into.
That being said if the server is storing your password in plaintext then you are fucked if the server is compromised. Also if they are using MD5 or even SHA1 then the potential for collision is high, so if they aren't salting it, you're password is vulnerable to rainbow tables and shit like that.
|
|