funsec mailing list archives
Re: Does Monster.Com Stores Passwords in the Clear?
From: nick hatch <nicholas.hatch () gmail com>
Date: Sat, 24 Jan 2009 13:39:27 -0800
On Sat, Jan 24, 2009 at 12:00 PM, Jon Kibler <Jon.Kibler () aset com> wrote:
When are companies going to learn? (Obviously either "never" or "when regulators [or lawyers] force them to learn".)
I'd go with never. A financial platform I know of stores online banking passwords "encrypted" by doing an ASCII -> EBCDIC conversion. That industry is crawling with regulators and auditors. Nobody cares. Or, perhaps nobody knows. -Nick
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Does Monster.Com Stores Passwords in the Clear? Jon Kibler (Jan 24)
- Re: Does Monster.Com Stores Passwords in the Clear? nick hatch (Jan 24)
- Re: Does Monster.Com Stores Passwords in the Clear? Rich Kulawiec (Jan 24)