Linked by Thom Holwerda on Mon 4th Jul 2011 21:43 UTC
Apple So, Anonymous, under the guise of its AntiSec campaign, has hacked an Apple server, got access to 27 administrator usernames and passwords, and put them on Pastebin. Is it time to panic? Is it time to point and laugh at Apple? Is it time to stop using iTunes? Not really - this is a small hack that will cause little to no damage.
Permalink for comment 479596
To read all comments associated with this story, please click here.
RE[2]: SHA1 hashed
by Soulbender on Tue 5th Jul 2011 15:53 UTC in reply to "RE: SHA1 hashed"
Soulbender
Member since:
2005-08-18

However even salting alone is insecure since building the reverse index is feasible using free software.


Actually, no. A sufficiently long salt (say at least 48 bits) makes pre-computed attacks unfeasible.
Of course, combining salting with key-stretching (as in bcrypt) makes it even more unfeasible.

Reply Parent Score: 2