> Last month, Facebook admitted to storing million of Facebook passwords in plaintext. The Verge Apr 18, 2019 We see students being taught login systems here and a recurring mistake is passwords being stored in databases. It appears that CompSci courses teach bad practices early and as we know it's hard to unlearn what you learn earlier. Further reading seems to indicate these passwords may have collected via logging. "But as Krebs on Security first reported, various errors seem to have caused Facebook’s systems to log some passwords in plain text since as early as 2012." I'm been chided for …

Member Avatar
Member Avatar
+3 forum 3

When I submit a form and the page refreshes the password and password confirmation values are being displayed in the address bar. Why is this? Can anyone explain this and give me an idea how to suppress this behavior? Please see attached screenshot. Thank you in advance! ![pass12.jpg](/attachments/large/0/f9784f8c4ab7d06aef077fb0ecdc4988.jpg "align-center")

Member Avatar
Member Avatar
+0 forum 12

I am try to make a program that alows the user to input their username and password to recive a set of options. Right now the options are to look at a file or quit. In order to complete it I need to know how to turn of the visability on raw_input(). Or how to get input from the user without them knowing what the screen is showing. (Ex: "Hello World" would look like "***********" or nothing at all.) Note: If you are trying to run the program you will have to make some .txt files and change the directories. …

Member Avatar
Member Avatar
+0 forum 1

How are keys and passwords stored in a computer to make them secure? If encryption is used to secure keys and passwords - won't there need to be a key or password for it also? Will that one be encrypted as well? It seems to me that eventually there will have to be a key or password that is not secure to get the whole process going.

Member Avatar
Member Avatar
+0 forum 3

Reports started circulating yesterday that Gmail had been hacked, with some 5 million logins at risk. This follows the publication, on Tuesday, of a plain text list of Gmail usernames and passwords on a Russian Bitcoin forum. Within 24 hours the 'hack hysteria' had taken hold and people were being advised to check if their accounts had been compromised, change their passwords etc. Trouble is, there appears to be absolutely no actual evidence that Gmail has been hacked at all, and plenty to suggest that this credentials list is just another composite; constructed with passwords taken from lists already published …

Member Avatar
Member Avatar
+2 forum 7

Problem: [b]Windows Vista/ Windows 7 User Account password corrupt / Forgot password.[/b] IMPORTANT: “DO NOT PERFORM SYSTEM RESTORE FOR THE FOLLOWING ISSUE, BECAUSE IF THIS ISSUE CAUSED AFTER WINDOWS UPDATE THEN THIS ISSUE WILL REOCCUR” SNIP Solution: 1. Boot from the windows vista DVD 2. Get into Windows Recovery Console 3. Open command prompt 4. In command prompt you will find “X:\source>” 5. Change it c: drive using command c: and hit enter 6. Then type “cd windows\system32” without quotes and hit enter, you will get c:\windows\system32> 7. Rename the osk.exe and cmd.exe using following: Type command : [quote]“ren osk.exe …

Member Avatar
Member Avatar
+0 forum 9

Following on from the news that an eBay password database has been compromised, and universal advice from security experts that users should now change their passwords, one thing has been loud clear: the total lack of that password change requirement from eBay. Sign into eBay and there is nothing to say stop, change your password. There has been no email sent to registered users urging them to make the change. In fact the only I've read of it have come from news stories in which they state that eBay are 'urging users to change their passwords' but truth be told …

Member Avatar
Member Avatar
+1 forum 13

UK home shopping pioneers Lakeland have sent an email to all customers past and present to warn them that the retailers website has been hacked. What Managing Director Sam Rayner calls a "sophisticated and sustained attack" took place late on Friday 19th July. Measures were taken at the time to block that attack and repair the system, however the ongoing investigation has revealed that two encrypted databases were compromised. In that email to customers, Rayner states that the company has been "unable to find any evidence that the data has been stolen" but nonetheless has taken immediate action to delete …

Member Avatar
Member Avatar
+1 forum 1

Apple, Facebook and Twitter have all been the target of hackers recently, and now Evernote has admitted to a potential breach that has forced it to reset the passwords of approximately 50 million registered users. Evernote, a kind of web scrapbook that enables you to take notes, save web pages and web page content, sync files across devices and share ideas with friends and colleagues, did the right thing in notifying users and resetting passwords. However, it did the right thing in the wrong way; and here's why. I received an email last night informing me that: > Evernote's Operations …

Member Avatar
Member Avatar
+1 forum 1

I had written a script to login to some terminals and do some basic commands remotely. It fails at password entry. ******************************************************************* Set WshShell = WScript.CreateObject("WScript.Shell") WshShell.Run "cygwin" ' Give Cygwin time to load WScript.Sleep 2000 a=Array(112) For Each i In a WshShell.SendKeys "`ssh user@XX.XX.XX.XX" & i & " 'hostname;ps aux' " & "{ENTER}" WScript.Sleep 1000 WshShell.SendKeys "******" & "{ENTER}" WScript.Sleep 2000 Next *************************************************************** It's taking till password step fails very next. I had double confirmed the password.

Member Avatar
+0 forum 0

I've noticed a problem in entering passwords in some sites. For example, my password is [QUOTE] abc123DEF* [/QUOTE] If I type it directly in the text box, it will tell me there is an error. If I type it in notepad/address bar and Copy+Paste it, it works fine. What is going on? Any ideas? Thank you.

Member Avatar
+0 forum 0

Can you please give me, or point somewhere, to find some sample code in FASM I'm trying to do a very simple program asking for a password, if the pass is correct display a message, if not exit program. Thank you very much :)

Member Avatar
+0 forum 0

Hi all, Hopefully a quick one. I have some weblogic build scripts that configure a WebLogic Server environment. Previously DB connection credentials have been allowed to be stored in build property files. However new security regulations mean that this is no longer possible. I am trying to write a prompt as part of my database connection creation loop. Unfortunately I have tried getpass and it doesn't work; it errors on solaris and windows saying: "Warning (from warnings module): File "C:\Program Files\Python2.7\lib\getpass.py", line 92 return fallback_getpass(prompt, stream) GetPassWarning: Can not control echo on the terminal. Warning: Password input may be echoed. …

Member Avatar
Member Avatar
+0 forum 7

Hi, I am new to web development. I am xampp package for development. First I was able to access MYSQL through CLI and PhpMyAdmin. But when I set the root password for the MYSQL, I am unable to access it. Any clue? Thanks

Member Avatar
Member Avatar
+0 forum 1

Over the weekend, software development and collaboration tools specialist Atlassian suffered a security breach to an internal system, potentially exposing customer passwords. The reason? It forgot about an old legacy database which had not been taken offline. According to Atlassian spokesperson [URL="http://blogs.atlassian.com/news/2010/04/oh_man_what_a_day_an_update_on_our_security_breach.html"]Mike Cannon-Brookes[/URL] the company had migrated its customer database into a new one, where all customer password were encrypted, during July 2008. "However, the old database table was not taken offline or deleted" Cannon-Brookes says "and it is this database table that we believe could have been exposed during the breach". He agrees that this was "a big error" …

Member Avatar
+1 forum 0

Hello, I have made a database system, when the database opens a login form appears and the username and password need to be typed into the text boxes. if admin is the username then the main switchboard. but if you log in as driver then a report opens. the trouble is when the report closes (report is called "rptdrivers deilveries (drivers report)" i want it to open the login form again, which i can do. but on my main switchboard i also have the same report and i dont want this to open the login form when closed. how do …

Member Avatar
Member Avatar
+0 forum 1

Hi, I am quite new to the world of computers and am looking for some advice. I have a Server which is networked to 5 other machines. On this server we have private databases etc and i would like to password specific folders or indeed the whole hard drive of the server so only the said machines can access the server. I don't have a clue where to start. Any help would be greatly appreciated. many thanks Oli

Member Avatar
Member Avatar
+0 forum 1

Hi So story goes, Ive recently started hashing user passwords to protect access, but have come to a bit of a problem in that if a user forgets their password, Im unable to retrieve it for them, because all I have is the salted-md5 hash? How has everyone else overcome this problem? lowrks

Member Avatar
Member Avatar
+0 forum 4

How many passwords do you have to remember? The common answer is either too many and I sometimes forget them, or alternatively just the one as I use it for everything. Both options are bad in terms of security. Which is where password management systems come in, and these can take many different formats. Some people use the pen and paper format, writing down all logins and passwords in a book and hiding it somewhere. Bad, bad security. Others do the same, but using dedicated software, which is much better security-wise as the list can be encrypted. Atek has come …

Member Avatar
Member Avatar
+0 forum 1

[URL="http://www.mcafee.com"]McAfee Inc[/URL]. has today released the results of new research which found that nearly one in four people in Europe are putting themselves at increased risk of online fraud or identity theft simply because of poor password habits. The research, of 3500 consumers in the UK, France, Germany, Italy, Spain and The Netherlands, reveals 24% of those questioned always use the same password to access all their online accounts and 43% never change it. The latter increasing the risk of people giving away their complete identity should that password be hacked or stolen. The research also revealed that expert advice …

Member Avatar
Member Avatar
+0 forum 1

The End.