I didn't know you could do that

I do enjoy my daily WTFs, at least when I can understand them, as was the case today.

Then I came across this discussion of Rainbow Tables (which, although you wouldn't be able to tell from the write up, are just a fancy time/space tradeoff for dictionary attacks), which has possibly the most painfully clueless set of comments that I have ever read. Is password salting really that difficult to understand?

Of course, the real WTF is why MS doesn't salt its passwords properly anyway...

No comments: