为什么纯文本密码不好?我如何说服老板,他的宝贵网站正处于危险之中? [英] Why are plain text passwords bad, and how do I convince my boss that his treasured websites are in jeopardy?
问题描述
我一直给人的印象是,密码以纯文本形式存储在数据库中(就像其他人所说的)是Very Bad Thing™.
I've always been of the impression that storing passwords in a database as plain text is (as someone else here put it) a Very Bad Thing™.
从历史上看,我们大多数服务器端编码需求已外包给一组程序员.它们将密码以纯文本格式存储在MySQL数据库中.
Historically, most of our server-side coding needs have been contracted out to a group of programmers. They store passwords in MySQL databases in plain text.
作为常驻代码猴子(顺便说一句,第一个在服务器端工作的精明猴子在这里工作,所以我继承了地球,可以这么说)当这种纯文本废话被利用时就行了.
As the resident code monkey (incidentally, the first server-side-savvy monkey to work here, so I'm inheriting the earth, so to speak) I have this pit of the stomach feeling that it's my bum that will be on the line when this plain text nonsense is exploited.
我试图向老板解释纯文本密码有多么非常糟糕,但它突然出现在我身上:我认为我从来没有真正知道为什么它们如此糟糕.除了给您的黑客提供一系列密码之外,还有更多的功能吗?这对我来说听起来已经很糟糕了,但是在la-la land,我们的网站安全"并且不受任何黑客攻击,这种说法似乎并没有消除它.我该如何说服(或吓))老板要求在他珍贵的网站上进行哈希处理?
I tried to explain to my boss how very very bad plain text passwords are, but it dawned on me: I don't think I've ever really know why they're so bad. Is there more to it than handing your hackers a list of passwords on a silver platter? That sounds bad enough for me, but in la-la land, where our websites are "secure" and impervious to any hacker, this argument doesn't seem to cut it. How can I convince (or scare) my boss into demanding hashing on his treasured websites?
Related: Encrypting/Hashing plain text passwords in database
推荐答案
在军事上,它被称为深度防御".从理论上讲,您可以强化每一层,而不是仅仅强化一层并希望足够.
In the military it's called "Defense in Depth". The theory is that you harden every layer you can rather than hardening just one layer and hoping it's enough.
我听说过像您这样的数据库,其中硬在外面,软在里面耐嚼".专门的黑客可以通过一百万种方法来访问您的数据库.社会工程人员,一个心怀不满的员工,一个前员工决定决定他的登录名是否仍然有效,或者他写的那个后门还在,一个错过的操作系统补丁……这个清单还在继续.
I've heard databases like yours called "hard on the outside, soft and chewy on the inside". There are a million ways a dedicated hacker can get access to your database. Social engineering, a disgruntled employee, an ex-employee who decides to see if his login still works, or that backdoor he wrote is still there, one missed OS patch... the list goes on.
如果一个坏角色通过这些方法中的任何一种来访问,而不仅仅是获取数据,他就可以访问系统中每个用户的每个用户名/密码组合,而且正如有人指出的那样,人们经常使用相同的组合对于每个网站.因此,您的黑客出门了,并拥有数百人的Paypal,电子邮件和银行帐户.
If a bad actor gets access through any of these methods, instead of just getting the data, he gets access to every username/password combination of every user of your system, and as someone pointed out, people often use the same combo for every website. So your hacker goes out and owns hundreds of people's Paypal, email, and bank accounts.
我画了够可怕的照片了吗?
Have I painted a gruesome enough picture yet?
这篇关于为什么纯文本密码不好?我如何说服老板,他的宝贵网站正处于危险之中?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
