* (diff) (hist) . . User talk:Jiang . . 13:43 . . Jiang (Talk | contribs | block) * (Deletion log) . . 13:40 . . Jiang (Talk | contribs | block) (deleted "Main Page": content was: '<div id="mainpage"></div><!--<------------------------------Banner across top of page------------------------------>{| style="width:100%; backgrou...') * (Block log) . . 13:39 . . Jiang (Talk | contribs | block) (blocked "User:Jimbo Wales" (account creation blocked) with an expiry time of indefinite: imposter) * (diff) (hist) . . MediaWiki:Sitenotice . . 13:38 . . Jiang (Talk | contribs | block) (thanks for the tip Geni) * (Upload log) . . 13:38 . . Jiang (Talk | contribs | block) (uploaded "Image:Emperor Go-Aze.jpg": fair use)
Could someone please run a password cracker across the admin accounts internally, to spot awful passwords?
/me goes changes his own
- d.
On 07/05/07, David Gerard dgerard@gmail.com wrote:
Could someone please run a password cracker across the admin accounts internally, to spot awful passwords?
It's not a straightforward operation due to the method we use to store passwords, so we'd need to generate and hash bad passwords per user, and then check against the real values in the database.
The main problem, though, is having a script with a list of rules for generating said "bad passwords" that are widely agreed to be tough enough, but not too tough.
Rob Church
On 07/05/07, Rob Church robchur@gmail.com wrote:
On 07/05/07, David Gerard dgerard@gmail.com wrote:
Could someone please run a password cracker across the admin accounts internally, to spot awful passwords?
It's not a straightforward operation due to the method we use to store passwords, so we'd need to generate and hash bad passwords per user, and then check against the real values in the database.
Greg and Brion are running one as we speak. Just the 1,153 en:wp admins for now. And it's sloooow. But, y'know, Tubgirl in the site notice. I think it rates it.
- d.
wikitech-l@lists.wikimedia.org