Guy B. Purcell wrote [edited]:
> Although, again, my team isn't part of the data teams, we were
> speculating about what could have happened, given the nature of the list.
> We had a difficult time convincing ourselves it wasn't just someone
> trolling--a twisted social engineering attempt (post simple hashes for a
> bunch of common passwords, then sit back & wait for posts to start showing
> up from people saying "mine's on the list!"--giving you, at least for
> a short window, a password & rough idea of username).
That's an interesting theory...
As a data point, my password hash is on the list,
and it's a pretty "strong" (random) password,
so it conflicts with the "post hashes of common passwords" theory.
Of course I was using it only on this site and it's changed now.
--
-- zvr --
-- +---------------------------+ Alexios Zavras (-zvr-)
| H eytyxia den exei enoxes | [email protected]
+-----------------------zvr-+
_______________________________________________
Discuss mailing list
[email protected]
https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss
This list provided by the League of Professional System Administrators
http://lopsa.org/
