On Jun 6, 2012, at 7:17 PM, Luke Hankins wrote: > http://blog.linkedin.com/2012/06/06/linkedin-member-passwords-compromised/ > ...includes this snippet: > "enhanced security we just recently put in place, which includes hashing > and salting of our current password databases." > > (Which implies that the passwords weren't hashed until recently... Buh?)
Now that the followup blog post is out <http://blog.linkedin.com/2012/06/07/taking-steps-to-protect-our-members/>, I can comment that our passwords are most definitely hashed--have been ever since the initial breach we suffered a couple years ago. And now they're salted, too :^) Vicente, as you can imagine, has been burning the midnight oil & wasn't quite as precise as he should have been. -Guy _______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
