DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=26978>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=26978 ------- Additional Comments From [EMAIL PROTECTED] 2006-07-07 10:06 ------- Not salting passwords is clearly broken, interesting or not, as it opens up at least one very juicy attack possibility - see http://en.wikipedia.org/wiki/Rainbow_table. Quoting that page: A rainbow table "contains statistically high chance of revealing a password within a short period of time, generally less than a minute." and: "A rainbow table is ineffective against one-way hashes that include salts." -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
