DEF CONGood morning, humans of #defcon31! It's good to be together again.
Please remember to drink water and look out for each other.
Let's have fun out there!
Aiden
- 17 Followers
- 10 Following
- 22 Posts
I occasionally hang out here, mainly looking at the Twit.Social local feed.
@SGgrc and @leo on SN spoke about PBKDF2 iterations, so I got to thinking... what's a reasonable number in terms of *time to login* (not crack with GPUs, etc)... well I also love Powershell (v7) so here we are: https://gist.github.com/aiden56/62f6725f90fb983637ec3b834edefe51.
Given this result, why would you bother with < 1,000,000 iterations?
@jhest "You've never seen that color?! It's a slightly darker shade of 2#SBQK&Ly8YBj10jp."
I once had to answer on the phone, "What's the 5th character of your first pets name?", and had to respond... "err... exclamation mark". 😅
Is anybody else's first pet called "^lc7HdP!t^@8BnzOT" according to their security questions?
@chris_spackman We really need to have a setting that says "DO NOT ALLOW PASSWORD RESET". If I ever forget my password, make me physically come into a bank branch, and check my ID, etc.
What other security helpers does secureish.com need?
@jay I'm sure somebody can scan the web for that SSL certificate, and let me know 😎
I probably shouldn't show how the sausage is made, but here is a peek at the repository...