Timeline for How can I prove this site has a huge security weakness?
Current License: CC BY-SA 3.0
4 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Jun 4, 2017 at 22:47 | comment | added | Peter Green | It's possible it's a manual test value, it's also possible that the app uses a screwed-up salt generator with only 8 bits of randomness, without seeing the real data it's not possible to tell. | |
| Jun 4, 2017 at 21:15 | comment | added | Gwyn Evans | Not sure how much weight I've give to the zeros in the salt, as while I can't be sure, I'd suspect that it's a 'test' salt value. | |
| Jun 2, 2017 at 16:35 | comment | added | Daevin | Thanks for the info! That's a good point about the legality... I'll remove that part from the question to be safe. | |
| Jun 2, 2017 at 16:04 | history | answered | Peter Green | CC BY-SA 3.0 |