WEB This is why you dont have plaintext sql databases

Discussion in 'OT Technology' started by Ricky, Dec 15, 2009.

  1. Ricky

    Ricky █▄ █▄█ █▄ ▀█▄

    Joined:
    Jun 17, 2005
    Messages:
    38,767
    Likes Received:
    6
  2. Pepsi1975

    Pepsi1975 Mod of the Year

    Joined:
    Jan 6, 2005
    Messages:
    47,590
    Likes Received:
    1
    Location:
    Detroit
  3. brds

    brds OT Supporter

    Joined:
    Jun 26, 2006
    Messages:
    17,646
    Likes Received:
    15
    Location:
    Atlanta
    sql101
     
  4. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
    this is why you don't leave yourself vulnerable to sql injection attacks, or store passwords in clear text
     
  5. dazmanultra

    dazmanultra New Member

    Joined:
    Jun 17, 2002
    Messages:
    34,795
    Likes Received:
    0
    Location:
    English Countryside
    Hashing isn't that much better these days :o
    The availability of rainbow tables as well as cloud computing power to generate the rainbox tables even fresh ones with hash + salt very quickly means that any leakage of database information puts you at risk. :o
     
  6. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
    pretty much, but it isn't worth the effort for your average every day hacker.
     
  7. dazmanultra

    dazmanultra New Member

    Joined:
    Jun 17, 2002
    Messages:
    34,795
    Likes Received:
    0
    Location:
    English Countryside
    Very true :p
     
  8. hank85

    hank85 sudo shred /dev/sda -f -v -z --iterations=6

    Joined:
    Jul 23, 2008
    Messages:
    4,360
    Likes Received:
    0
    truth has been spoken.

    it's easy to sanitize. especially if you're using your own, or a 3rd party sql class for all of your queries and connections.
     
  9. quid

    quid I Piss Excellence OT Supporter

    Joined:
    Aug 28, 2004
    Messages:
    50,352
    Likes Received:
    3
    Location:
    california
    at risk of sounding like a noob, do you have a link to a good one?
     
  10. hank85

    hank85 sudo shred /dev/sda -f -v -z --iterations=6

    Joined:
    Jul 23, 2008
    Messages:
    4,360
    Likes Received:
    0

Share This Page