Re: Does Monster.Com Stores Passwords in the Clear?

[nick hatch <nicholas.hatch () gmail com>]

On Sat, Jan 24, 2009 at 12:00 PM, Jon Kibler <Jon.Kibler () aset com> wrote:

> When are companies going to learn? (Obviously either "never"
> or "when regulators [or lawyers] force them to learn".)
I'd go with never. A financial platform I know of stores online banking
passwords "encrypted" by doing an ASCII -> EBCDIC conversion.

That industry is crawling with regulators and auditors. Nobody cares. Or,
perhaps nobody knows.

-Nick

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.