Cutout.Pro, an AI-powered visual design platform, leaked 20M records, including email and IP addresses, names and salted MD5 password hashes, which have then been broadly distributed. - eviltoast
  • viking@infosec.pub
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    1
    ·
    8 months ago

    Like I mentioned, I’m using a related pattern, nothing as simple as the one I sketched out here.

    • LostXOR@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      8 months ago

      As long as the other 18 characters are randomly generated that seems secure enough, and a decent way to keep track of which passwords are associated with which accounts.

      • LordKitsuna@lemmy.world
        link
        fedilink
        English
        arrow-up
        9
        ·
        8 months ago

        Feels like just a roundabout an exceptionally more difficult way to achieve a strong password versus just a password manager. Where you can do ridiculous things like have a 100 character long password

        Only to discover that the website will accept 100 characters in the box but actually truncate it to like 40 without telling you