Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Sun, 19 Jun 2016 20:05:09 +0200
From: "e@...tmx.net" <e@...tmx.net>
To: passwords@...ts.openwall.com
Subject: Re: Am I Overlooking any Practical Attacks?

> I'm building a free software project that, I hope, will one day be the
> secure alternative to CMS platforms like WordPress, Drupal, Joomla, and
> so many others.

there are 3 show-stoppers:
- HTML, it is intrinsically anti-secure (by design: lets run something 
from somewhere within the context of the parent document without user's 
consent!)
- CMS, it is a non-entity, posing as a non-solution to a non-problem.
- "so many others"


> * Weak passwords are rejected. Weak means a Zxcvbn score < 3 (this
> parameter can be configured).

Let me guess, you do not have any definition of "weak/strong" at all.
As the list is already sick of this reminder of mine:
you are not allowed to reason about password strength until you define it.


> The password
> feedback messages also strongly encourage the use of password managers.

yes! why bother authenticating humans, if you can authenticate an 
impostor software program.


> * In case your password gets leaked, two-factor authentication

where is a definition of "leaked"?
and how do you detect the event? (the event?)


> * Database dumps: We use Argon2i for password hashing (provided by
> libsodium). Hashes are then encrypted using Halite's symmetric
> encryption feature. The idea here is if you're using RDS (or otherwise
> have the database on separate bare metal than the webserver), finding a
> SQLi doesn't even give an attacker the hashes to begin cracking.

...at the same time we are happy to provide the encryption key to all 
our PHP-scripts that read this database.


> * Usernames aren't even used in the course of interacting with other
> users  Your username is strictly used for
> authentication.

and what's the point?

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.