Main Contents

Encrapted Passwords

security, software development

Learned a new term today going through 19 Deadly Sins of Software Security. They give an example of a URL containing a strange looking id parameter:


www.xyzzy.com?id=TXkkZWNyZStwQSQkdzByRA==

Turns out a simple run through a base64 decoder for gives you:


My$ecre+pA$$w0rD

The authors then refer to this as an “encrapted” password.

Ed Gibbs @ December 6, 2006

Leave a comment


Feed