Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for May 23, 2013
An "enum" for Python 3
An unexpected perf feature
LWN.net Weekly Edition for May 16, 2013
A look at the PyPy 2.0 release
I donno. Good point.
I just figured being able to display a table requires less rights then being able to modify it
and since it's needed by the authentication stuff then it would be accessable to parts of the
website accessable by anonymous people.
Wordpress Cookie Authentication Vulnerability
Posted Nov 20, 2007 6:09 UTC (Tue) by Ross (subscriber, #4065)
For one thing, this type of problem would allow access to continue long after the broken code
is fixed, without the user knowing about it. Also, because of the way the password is stored,
it would easy allow offline cracking of passwords, and users tend to reuse the same password
on different sites.
Posted Nov 20, 2007 6:41 UTC (Tue) by lutchann (subscriber, #8872)
That's true of pretty much any authentication system, except those based on asymmetric
cryptography. Wordpress is far from unusual in storing password equivalents on disk. So
unless Wordpress somehow encouraged making the user table accessible to attackers, I still
don't see why this is a big deal.
Posted Nov 20, 2007 9:15 UTC (Tue) by Ross (subscriber, #4065)
It's true that any encrypted password can be attacked offline if you have the hash, but if the
passwords were properly salted, it would be much more expensive to crack them because an
attacker couldn't build a pre-encrypted dictionary.
Posted Nov 20, 2007 16:10 UTC (Tue) by drag (subscriber, #31333)
Google around for 'Rainbow tables'. There are ones you can download for free and ones you can
Just going out to pirate bay and doing a quick search I found downloads for MD5, SHA1, and NT
Lan manager tables.
Posted Nov 20, 2007 18:21 UTC (Tue) by Los__D (guest, #15263)
The main purpose of salts is to combat things like rainbow tables.
Posted Nov 20, 2007 19:12 UTC (Tue) by jengelh (subscriber, #33263)
The main purpose of rainbow tables is to combat unsalted web apps ;-)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds