> You create a system that detects high entropy content before being logged. Unf... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		hn_throwaway_99 on April 19, 2019 \| parent \| context \| favorite \| on: Facebook stored millions of Instagram passwords in... > You create a system that detects high entropy content before being logged. Unfortunately, as numerous password breaches have shown, most passwords aren't that high entropy.

mercer on April 19, 2019 [–]

Perhaps also checking logs for x of the most common passwords could work? On the scale of Facebook this might very likely trigger some positives with such a bug?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact