|
These days, hackers steal passwords wholesale, not one by one, which is why you can ignore outdated password practices. OK, my new password is 'a'. Please don't tell anyone.
|
|
|
|
|
I've been saying that for years. Crackers using a brute-force attack will never try single-character passwords.
|
|
|
|
|
Wow - thanks for the tip - I've changed my prog to start at one character now
PooperPig - Coming Soon
|
|
|
|
|
|
My passwords is always, click on 'Forgotten you password?' link.
|
|
|
|
|
My neighbour ask me for my wifi password, i told him "from 0 to 9", he tried "0123456789" but no luck , and my real password is "from0to9"
In code we trust !
|
|
|
|
|
It has nothing to do with the complexity of your password, but the way it stored. Hackers able to steal because morons store it as plain text!!!
I'm not questioning your powers of observation; I'm merely remarking upon the paradox of asking a masked man who he is. (V)
|
|
|
|
|
In the worst (and all too often) case, yeah. However, even a secured table can be cracked with rainbow tables[^]. Assuming they can download the data, of course.
TTFN - Kent
|
|
|
|
|
Kent Sharkey wrote: However, even a secured table can be cracked with rainbow tables[^].
Not unless you're doing it wrong. If you salt the hashed password using a unique salt per password, it renders rainbow tables useless, as you'd have to recalculate them for each password.
Of course, if you pick the "wrong" hashing algorithm, a GPU will be able to crack the passwords in next to no time anyway:
http://www.troyhunt.com/2012/06/our-password-hashing-has-no-clothes.html[^]
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
I had a server with a password of "ASecret" just for the pleasure it gave me when someone asked for the password & I could tell them "It's a secret"
PooperPig - Coming Soon
|
|
|
|
|
Kornfeld Eliyahu Peter wrote: plain text No, you are wrong. Why don't you understand that the password is UTF-8 encrypted?
|
|
|
|
|
The practice is not outdated, on the contrary. There's a thread on a mask-attack in the C# forum.
If you ignore the warnings, then you can just as well ignore locking the door completely. The worst is that the suggestion is coming from a "security advisor"
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
It seems that the theory taught in schools is valuable after all, but only as a supplement to the practical skills. So, it is probably better to find a way to learn these practical skills first. Only after mastering these skills will the higher level theory taught in schools be useful.
...But the degree still helps.
|
|
|
|
|
Epoch Times wrote: Only after mastering these skills will the higher level theory taught in schools be useful. That's rubbish (IMHO).
But I do agree that simply having a degree in Computer Science maketh a software engineer not. Practical experience is necessary because it exposes the engineer to real-world issues which (for the sake of practicality) can only be glossed over in a classroom environment. This is why internships done while studying are of great value.
Aside: I've worked with several very proficient devs who don't have a CS degree but are more than able to carry their weight. And then some.
/ravi
|
|
|
|
|
I think it's the same in any technical profession. I've known some graduate engineers who couldn't do engineering and I've known some people who could run circles around most engineers but never got a degree.
CQ de W5ALT
Walt Fair, Jr., P. E.
Comport Computing
Specializing in Technical Engineering Software
|
|
|
|
|
The main divide here is that people can't relate to what is taught in colleges with what's out there....
But the fundamental take away here is learning should never cease.
|
|
|
|
|
To be a successful programmer you need two things, the desire to continually learn AND practice.
A degree is not intended to teach a person a trade so they can go out and practice that trade for a living. A degree gives you a foundation and exposes you to a variety of topics. To simply be aware what knowledge exists out there to be able to draw upon for a solution is very powerful.
You need to actually go out and practice to learn how to apply what you have been taught in college for the degree.
Having a degree will open doors, even if they are not in the related field that you work in. Some companies will not even consider candidates unless they have a degree.
There are plenty of jobs out there that require all range of skill and education levels.
From the very narrowly focused view-point that the article takes, yeah, there are people that create mega-corporations without degrees. They are the exception and not the rule.
Then of course a programmer can always google...
|
|
|
|
|
Many decades ago I got a PhD in Computer Science and became a professor with the chair in Computer Science. After three years of teaching almost the same syllabus (heavy on "History of Computing") I got out and took a job as a junior programmer in an aircraft company. I would say I learned more during the five years with that company (despite the boss being an old-school, self-taught, tyrannical idiot) than all the academia up to that point. I am still learning and when I look back at what I did for my PhD, my thesis, about home computers and home computer gaming in "the future" (this was before any of it existed, before the PC, before Commodore PETs, etc.) was the only thing that still had some relevance. I did predict the internet, but not kitten pictures, U-Tube or Twitter - although there was something that was sort of Facebookish.
The point is, everything keeps changing and by the time it is put into a college syllabus it is probably out of date, especially these days. For example, I put off learning SilverLight and now I don't need to!
- I would love to change the world, but they won’t give me the source code.
|
|
|
|
|
Another aspect is that you learn fundamentals of engineering math, sciences etc.
There is no replacement for practice.
The real world definitely is different than academia, and I believe they both are important.
|
|
|
|
|
On March 6, 2001, a specification proposal was born within the JCP. It was called JSR 107: Java Temporary Caching API (JCache for short) and it seemed doomed to languish within the JCP longer than any other specification proposal for the language. But almost exactly 13 years later, in March of this year, the specification was completed thanks to the efforts of Greg Luck, and Oracle’s Brian Oliver and Cameron Purdy.
Took long enough.
|
|
|
|
|
Just in time for the Bar Mitzvah celebrations...
I'm not questioning your powers of observation; I'm merely remarking upon the paradox of asking a masked man who he is. (V)
|
|
|
|
|
It's a spec, including embedded examples, and implementations in portable C and JavaScript. We strived mightily to stay true to the spirit of Markdown in writing it. # This makes _me_ **happy**
|
|
|
|
|
Nearly 70 percent of current IE users must upgrade to a newer IE -- or switch browsers -- in the next 16 months, before support will end. People like the big blue 'e'
|
|
|
|
|
I still use IE 9. In Vista.
I like the word "Must"
We don't "have" to do anything.
For those that want to get rid of it all together there is a command line option.
|
|
|
|
|
Google has partnered with scientists at the University of California, Santa Barbara to build new processors for use in quantum computing systems. Or maybe they're not
|
|
|
|