From: Wil.Allsopp@ins.com
Date: Tue Aug 30 2005 - 16:59:03 EDT
James Leighe [jamesleighe@gmail.com] wrote:
>It's stored as a hash, so if you find out how to access them, you
>would have to crack it. So basically, it's not worth the time when an
>attacker could just go for the current password.
This shows a fundamental misunderstanding of security as well as the way
hackers think. There are many advantages for an attacker to have your
previous passwords - passwords are reused and some may be current on
peripheral or entirely separate systems.
Wil
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:48 EDT