Forum Settings
       
Reply To Thread

Hashed passwordsFollow

QuoteReply
#1 May 12 2011 at 11:03 AM Rating: Decent
__DEL__1591995475023
1 post
The stolen Hashed password worries me. If they could get the account page back up for just a little while. I could change my login password, and feel a lot better about this whole mess.
▲ Page top
QuoteReply
#2 May 12 2011 at 11:30 AM Rating: Decent
__DEL__1591995332816
Scholar
17 posts
You gotta realize that the hackers can't change or login to your account either at this point. Their network is offline for external access, for the most part I'd gather.

Try not to worry too much about it since I'm sure news will spread very quickly once stuff starts to come back online and then you'll be able to change stuff.
▲ Page top
QuoteReply
#3 May 12 2011 at 11:39 AM Rating: Good
__DEL__1716164186677
Guru
**
610 posts
That is the first thing I intend to do when EQ is reactivated.
Though,I wont necessarily change/cancel my credit card unless I get an email from SOE ,which I read somewhere that they would send to accounts that were at an elevated risk of being compromised.
▲ Page top
QuoteReply
#4 May 12 2011 at 6:40 PM Rating: Good
__DEL__1592257009527
View User Forum
Sage
***
3,937 posts
Assuming Sony was less stupid about their hashing methods than they were about their overall security, assuming you had a remotely decent (nondictionary) password, your hashed password being stolen does not matter very much.
▲ Page top
QuoteReply
#5 May 12 2011 at 6:59 PM Rating: Decent
__DEL__1594573353714
7 posts
I think your missing the point of hashed data all together. The real threat isn't that it could be reversed to find your password, that's just silly and only useful for attacking a specific target since it's going to likely be time consuming for each password reversed. Instead it's that if the hash algorithm isn't changed there is potential that someone can figure it out and bypass the need for a password all together. If that happens then no amount of password changes will matter because every account will be vulnerable. If the security firm that Sony hired is even remotely worth the price their paying, they know this and will take steps accordingly.
▲ Page top
QuoteReply
#6 May 14 2011 at 3:04 PM Rating: Decent
__DEL__1591995530641
4 posts
Hankragnar wrote:
The stolen Hashed password worries me. If they could get the account page back up for just a little while. I could change my login password, and feel a lot better about this whole mess.

I doubt they are after your account anyways :) I would just watch your spending records for stuff you don't remember doing.
▲ Page top
QuoteReply
#7 May 14 2011 at 5:35 PM Rating: Good
__DEL__1643588328436
View User Forum
Sage
*
57 posts
THe point to stealing the hashed passwords is that far too many people use simple passwords ... so the hackers just do a reverse dictionary search (hash up a dictionary and other common names and then compare those hashed words with the stolen list)...

If you have a more complex password (123456789 is not more complex), then the reverse search will not work and they are not going to spend the time trying to reverse engineer you ... not when tens of thousands of people use their own names for passwords ... or the word password...

A password like "pAladin8monK" is easy enough to remember, not too long, contains letters, a number and capitalization, is not a dictionary name or the proper name of anything ... and is not worth the time to try to crack ... not when so many people use trivial passwords...

-- Add--
And I would not suggest you use the the one I concocted either ...

Edited, May 14th 2011 7:36pm by SoloistMonk
▲ Page top
Reply To Thread

Colors Smileys Quote OriginalQuote Checked Help

 

Recent Visitors: 102 All times are in CST
Anonymous Guests (102)
© 2024 Fanbyte LLC