So, a question: if you were planning on making a sightseeing trip, starting round the East of Scotland, with a radius of about 100 miles, what would be your most highly recommended sights to see?
Note: must be impressive and worthwhile from about 2000' in the air.
Just as cyclists need to be aware of aggressive motorists, even though driving aggressively is "socially irrresponsible".
Naively, this sounds like they're doing plaintext edit distance comparisons on the two passwords (as PAM does); but without having the user re-enter the old password, it sort of sounds a bit like they must be storing passwords reversibly encrypted in order to retrieve the old one to compare against.
I'm completely refusing to believe that even Facebook are that stupid, so there's an intriguing question: how do they do it?
First thing that comes to mind is to try simple obvious edits from the new password (which is to hand, obviously), hashing those and checking against the old password hash. If you get a match, complain that the passwords are too similar. The obvious edits are incrementing/decrementing numbers, replacing numbers to the similar-looking letters and vice-versa.
...which of course is exactly what cracklib does. So, taking the new password, adding it to a dictionary (possibly with some preprocessing to separate out any obvious syllables or other components and add those separately), and running a few seconds of cracking time at it?
Sounds pretty reasonable to me?
- MStar SemiconductorPrincipal Architect: Compiler Technologies, 2011 - present
- MediaTekDSP Processor Architect, 2010 - 2011
- Analog Devices2006 - 2010
- Broadcom2001 - 2003
- Element 14 Inc1999 - 2001
- University of Glasgow
- University of Edinburgh
So this Feminist Walks into a Bar... | Comedy Feature | The Skinny
Previously, feminism has been written off as fundamentally humourless – 2013 is the year that officially changed. The winner of this year
MStar Semiconductor, Inc.: TPE:3697 quotes & news - Google Finance
Get detailed financial information on MStar Semiconductor, Inc. (TPE:3697) including real-time stock quotes, historical charts & financi