<p dir="ltr">Its more 'why you don't just encrypt your password database with a broken encryption system'</p>
<p dir="ltr">Hash storage is what they were supposed to do.</p>
<div class="gmail_quote">On Nov 5, 2013 1:06 PM, "Dave Brockman" <<a href="mailto:dave@brockmans.com">dave@brockmans.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<br>
<a href="http://nakedsecurity.sophos.com/2013/11/04/anatomy-of-a-password-disaster-adobes-giant-sized-cryptographic-blunder/" target="_blank">http://nakedsecurity.sophos.com/2013/11/04/anatomy-of-a-password-disaster-adobes-giant-sized-cryptographic-blunder/</a><br>

<br>
Well written article with a mini crib-sheet guide included :)<br>
<br>
Regards,<br>
<br>
dtb<br>
-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v2.0.17 (MingW32)<br>
Comment: Using GnuPG with Thunderbird - <a href="http://www.enigmail.net/" target="_blank">http://www.enigmail.net/</a><br>
<br>
iQEcBAEBAgAGBQJSeTMjAAoJEMP+wtEOVbcdXYIH/i587GZTZBEfLEDLRiLY2n+c<br>
BBjZGLCYF+WvzHFqI725vKwTlzlwW36UFrLxORN7lfv1JM5qCDFdeQG9XqkZKkYG<br>
UAck4M1E07xXYzZnWQe/Rir0DoXzJJ/FL0HmrhtADvlzLyVuykiDLx71zueyDh8+<br>
2utCpc6TE85klUOYAqbMZFX5ul9tGoQkYAKZcf6RM/VWUWdY8kyAcprVmV/h1hSn<br>
HDJ1xevmpk5/zEOB41Nf5Yiv1mc2vMVYYpphK1UBd+HbF9XEj1xAUTRQZQXotFhA<br>
uvODS6q32UgwKhGfM096RMP/Dk47gSOf730IPQNxihbsdbL+M/UNhMzKX5+lClw=<br>
=qxNX<br>
-----END PGP SIGNATURE-----<br>
_______________________________________________<br>
Chugalug mailing list<br>
<a href="mailto:Chugalug@chugalug.org">Chugalug@chugalug.org</a><br>
<a href="http://chugalug.org/cgi-bin/mailman/listinfo/chugalug" target="_blank">http://chugalug.org/cgi-bin/mailman/listinfo/chugalug</a><br>
</blockquote></div>