Hi Full-Disclosure, Just my two cents but ... the fact they can give your password back doesn't mean it's stored in cleartext, just that it's not hashed but encrypted with some way to get the original data back, this doesn't mean at all it's not secured, even though in most case it's not.
-Romain On Wed, Apr 6, 2011 at 1:36 PM, <[email protected]> wrote: > Kinda plaintextoffenders.com? > > wbr, > - Max > > [email protected] wrote on 01.04.2011 02:17:24: > > > Inc leartext <[email protected]> > > Sent by: [email protected] > > > > 01.04.2011 13:14 > > > > To > > > > [email protected] > > > > cc > > > > Subject > > > > [Full-disclosure] password.incleartext.com > > > > Hi FD, > > > > Just launched a new website to keep a list of websites storing > > passwords in clear text, so far the database is small but feel free > > to add some: > > http://password.incleartext.com/ > > > > > Cheers, > > Inc Leartext_______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ >
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
