vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   vB Password security outdated? (https://vborg.vbsupport.ru/showthread.php?t=206826)

silvermerc 02-27-2009 06:16 PM
vB Password security outdated?
 
Well today as you may have read my site got defaced due to a moderators encrypted password being leaked by another forum, I was wondering if theres any way to encrypt the passwords better?
Ross

snakes1100 02-27-2009 10:32 PM
Quote:
Originally Posted by silvermerc (Post 1756304)
Well today as you may have read my site got defaced due to a moderators encrypted password being leaked by another forum, I was wondering if theres any way to encrypt the passwords better?
Ross
vbulletins security wasnt the issue in your case as you've pointed out, if the other forum wasnt hashing their passwds and just encrypting them, then your moderator made the mistake of using the same passwd on both sites.

encryption is reversible, hashing as vbulletin does isn't.

silvermerc 02-27-2009 11:49 PM
Well here is what he showed me:
f53436bfa82d5583f7e3034f34884e53
As his password


All times are GMT. The time now is 02:28 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01102 seconds
  • Memory Usage 1,710KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (3)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete