Wikipedia Leaks Some Users' Passwords

JJ Budion writes "If you've signed up for an account on Wikipedia.org, you may want to check this page to make sure you're not on there. It seems certain users with identical password hashes can find other user names with the same password, and Wikipedia (despite being alerted) has done nothing about the problem for the last year. A good (although slightly inflammatory) description of the problem can be found here. This is probably a good occasion to remember to use strong passwords (apparently only users with common passwords, like dictionary words, are affected)."

Well, good for me!

[TheRealMindChild]

I guess it is a good thing that I use "TheCowJumpedOverMyMotherInLaw" as my password... no one will ever figure that one out

Re:Well, good for me!

[jx100]

Dammit, I need to change the code on my luggage now!

Wiki-passwords?

[pianorain]

Bah...you mean that I can't edit other people's passwords too?

I've said it before

and I'll say hit again, hotgrits is not a safe password

the two guys

the two guys with "Ilovetehfatchicks" as their password who showed up on each others list are just looking at each other right now. They know the other guy knows, but nobody else does, so the uncomfortable, pregnant, silence continues.

1 2 3 4 5

[bestguruever]

Cue the spaceballs references ...

Passwords...

[aicrules]

Perhaps they should try this:

http://en.wikipedia.org/wiki/Password_policy

to try to avoid this:

http://en.wikipedia.org/wiki/Password_cracking

Re:Saw this on K5

[aicrules]

Think they might use the same password on two different systems?

Not me! You couldn't hack into my account that way! No siree! I always use different passwords for each site that I'm on. That way, even if the site is unscrupulous I have nothing to worry about on the other 500 sites I have accounts on.

Unfortunately, to remember them all I just use the name of the site as the password for my account.

Whew, I'm safe!

[sveskemus]

Good thing my password is *********.

Re:Doesn't know diddly about hashing

That looked like a vi command for a second.

Still Waiting

[Keystroker]

I'm still waiting on who actually uses Wikipedia as their primary source of information. :rollseyes:

Re:Still Waiting

[fredrikj]

I'm still waiting on who actually uses Wikipedia as their primary source of information.

According to this page I found, which seems reliable, "Its articles have been cited by the mass media and academia."

I use my dog's name as my password.

I use my dog's name as my password.
My dog's name is currently "rV4q-p2", but I change it every 90 days.

Re:Shame on Wiki

[Rei]

You did your post wrong, and are just asking to have other editors come along and fix it for you. To save this from a hundred edits, I'll go ahead and try to get them all at once:

If they're going to succeed in portraying Wikipedia as a mature, reliable alternative to traditional encyclopedias, they ought to make damned sure that their ducks are in a row. Their disregard for customer concerns is shameful.

If, in the long-term, Wikipedia's image is tarnished by this, it is well-deserved.

See also:
* Wikipedia (external link)

Obligatory bash.org

[nganju]

Cthon98> hey, if you type in your pw, it will show as stars
Cthon98> ********* see!
AzureDiamond> hunter2
AzureDiamond> doesnt look like stars to me
Cthon98> *******
Cthon98> thats what I see
AzureDiamond> oh, really?
Cthon98> Absolutely
AzureDiamond> you can go hunter2 my hunter2-ing hunter2
AzureDiamond> haha, does that look funny to you?
Cthon98> lol, yes. See, when YOU type hunter2, it shows to us as *******
AzureDiamond> thats neat, I didnt know IRC did that
Cthon98> yep, no matter how many times you type hunter2, it will show to us as *******
AzureDiamond> awesome!
AzureDiamond> wait, how do you know my pw?
Cthon98> er, I just copy pasted YOUR ******'s and it appears to YOU as hunter2 cause its your pw
AzureDiamond> oh, ok.