Patrick Gerken
þēodrīċ, norþes ecghlāfordLook at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
Jari
KasTas
Hans-Martin@KasTasMykolas @theodric well it's par for the course on Microsoft answers.
KR3ST3N 🌻
Hanneke
Hazelnoot
embix@theodric This basically translates to "Please make sure your password is part of our rainbow table", right?
Zuri (he/him) ❌️👑 | 🕐 CET@brezelradar @theodric I hope, Microsoft has its own variant of https://haveibeenpwned.com for this use case
Zikko
Alexander Janßen@theodric I'm too sober for this shit
TeflonTrout 
he/himThat is not very correct horse battery staple of them at all
Heals 
(moved)
Kévin ⏚« Additionally, Microsoft has methods for scanning the contents of password-protected zip files, such as extracting possible passwords from the bodies of an email or the name of the file itself »
Isn’t that technically a cybercrime in most countries 🤔
6I can’t remember where I found the story a while back but basically the gist of it is most of these companies just don’t pay or they fuck around so long the regulators drop the amounts substantially. When you have the amount of money (and lawyers) of all the nations on earth, what is one or a collection of countries going to do about it
Sam Stephens@theodric satire is truly over
Katerina Marchán@theodric this reads like an LLM response, so is probably just that
Lucky ✨
Leo Ré Jorge@theodric This has to be an LLM response... even leaving alone this horrible security advice, the whole response is trying to do the exact opposite of what the OP asked!
Eve Ventually@LeoRJorge @theodric Offering irrelevant / off topic advice is pretty normal for humans where complicated or obscure questions are in play (source: reading lots of StackOverflow and forum responses written before the advent of stochastic parrots). That said, I do agree this is likely slop since the point about the passwords would have to be hallucinated.
@EveHasWords @theodric Yeah, maybe I was giving too much merit to the Microsoft employee who posted the reply...
Burak Gürsoy@theodric p4ssw0rd1
Author-ized L.J.@theodric “Microsoft has methods for scanning the contents of password-protected zip files, such as extracting possible passwords from the bodies of an email or the name of the file itself[.]” Cool and normal stuff, your storage provider telling you that they are essentially cracking your data.
Hugh Young-Bish@theodric
Does it suggest "password" or "ABC123"?
Does it suggest "password" or "ABC123"?
Rob Ricci
rmikke
Frost, ᛁᛊᛟᛚᚠᚱ 🐺❄️
@theodric what the..what??
Marijke Luttekes@theodric In an unrelated statement, a Microsoft employee also recommended the use of generic locks that are easy to pick, lest you’ll never be locked out of your house again.
sauc3
Epic Null
Joe Cooper 🇺🇦 🍉@theodric relatedly, if everybody uses the same password the odds of someone guessing a password goes way down, right? Like, if there are 50 people in an organization and they each have their own password, an attacker is 50 times more likely to guess a password. That's just basic math.
Matt Palmer@swelljoe your logic is impeccable.
aura, disgraced heretic@theodric ah, passwords as social convention
Xenia0040
su_liam
Hippo 🍉
Arne Böttger@theodric It’s about history. First there were DOC and XLS files with macros exploiting auto-opening. Th en these file types were blocked, forcing people to put them in a ZIP envelope. Then blocking of unprotected ZIP files forcing user interaction to extract them. Followed by the hindsight that you still might want to scan them.
Just disable auto-opening from mail apps and educate users instead of adding more and more yellow tape.
Just disable auto-opening from mail apps and educate users instead of adding more and more yellow tape.
Escape plan@theodric
Insecurity as a feature
Insecurity as a feature