digg

Facebook Connect Join Digg About
See the original image at codinghorror.com

I Just Logged In As You

codinghorror.com Is it true? Did someone just log in as me? I checked the OpenID logs, and sure enough, there was a valid login from an IP address I didn't recognize. He wasn't bluffing. He really did log in as me.

Who dugg this? Made popular May 5, 2009

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

134 Comments

show profanity settings
expand all
  • HelAom, on 05/05/2009, -1/+92<Cthon98> hey, if you type in your pw, it will show as stars
    <Cthon98> ********* see!
    <AzureDiamond> hunter2
    <AzureDiamond> doesnt look like stars to me
    <Cthon98> <AzureDiamond> *******
    <Cthon98> thats what I see
    <AzureDiamond> oh, really?
    <Cthon98> Absolutely
  • nomorestupids, on 05/05/2009, -0/+56my password is *******
  • IsraGeek, on 05/05/2009, -0/+55That's some story. Nice of the hacker to notify him about the weakness and not do anything with the info.
  • MacEnvy, on 05/05/2009, -0/+49Most casual hackers aren't actively malicious, despite what the evening news would have you believe. They're just curious, bored, or trying to be helpful.
  • nepidae, on 05/05/2009, -2/+45mine is *********

    edit: wow, it actually did convert it to asterisks
  • MacEnvy, on 05/05/2009, -0/+41Ha ha, let me try:

    hunter1
  • krisrm, on 05/05/2009, -0/+34hunter2 hunter2 - it doesn't work on my screen! (http://bash.org/?244321)
  • drmangrum, on 05/05/2009, -0/+31Most hackers are not Black Hats.
  • cx0der, on 05/05/2009, -0/+30am sure it was Orange
  • SquareWheel, on 05/05/2009, -0/+25"despite what the evening news would have you believe"

    *inserts clip of exploding van*
  • inactive, on 05/05/2009, -5/+29haha he wasn't joking.
  • themastersb, on 05/05/2009, -0/+24Mine is hunter2

    edit: for some reason I can see this. Can anyone else?
  • MacEnvy, on 05/05/2009, -0/+23You can see it because it's *your* password. Looks like ******* to me.
  • zzzBrett, on 05/05/2009, -0/+22So.. did he ever "highlight the best response" the next day?
  • HelAom, on 05/05/2009, -0/+22I have the same password on my luggage
  • chriscim, on 05/05/2009, -0/+21Well...if that really is his password, then anyone else could've posted that.

    EDIT: And...he's no longer a user on digg. lol
  • inactive, on 05/05/2009, -3/+23my passwd is tireddepressd1. you guys can have my account, im finished here
  • Chompy, on 05/05/2009, -0/+20Yeah, you really ought to.
  • diemunkiesdie, on 05/05/2009, -0/+19So... How did this person discover his password? He said he would "highlight" the correct answer tomorrow, but the post was from May 3, and today is May 5!
  • StatusWoe, on 05/05/2009, -1/+20Well if you announce that they all start with that then all they need to do is brute force the remaining 6-8.

    Salt only works in a hash.
  • jfulls, on 05/05/2009, -0/+19So I can type my password "cockrocket" all I want and it shows up as asterisks for everyone else?

    I never knew, so awesome!
  • kingmanic, on 05/05/2009, -1/+19Sort of related:
    When I went to university many people would forget to log off their accounts/IM/myspace/Facebook/ICQ etc.... So when ever I found one someone forgot to lock or to log off I'd change their status and post a message saying
    "I just sucked some homeless guys *****. I also forgot to log off." or change their background to gay porn.
    Then log them off.

    I know the local admins were meaner and they'd copy off all of your files to their admin area erase what was there. This would be especially depressing around project deadlines. They'd make you volunteer at the computer science students union to get your files back.
  • GreatSunJester, on 05/05/2009, -1/+19I wonder how many people just tried that to log in.....
  • thredden, on 05/05/2009, -0/+17What the hell? This user showed up from the future?

    The post was on May 03, 2009

    ((May 03, 2009) + 4) != Today
  • Narcism, on 05/05/2009, -1/+18@apackofmonkeys Be sure not to click on any links posted alongside said references, might be a giveaway.
  • LANjackal, on 05/05/2009, -2/+19Scary? Yes but here's the rub: many sites out there actually don't support strong passwords because they don't allow special characters. Besides that, strong passwords are harder to remember, so if you forget yours you've performed a DOS attack on yourself. Most password managers simply localize the problem, not eliminate it, by locking up all your passwords using a single key/master password. This leads to the same problem as before: lose your key or forget your password and your screwed. But if a crook accesses the key or cracks the master password, he still wins.
  • Apocryphax64, on 05/05/2009, -0/+16Of those 3 only WPA2 will actually keep me off your network ;)
  • yocouchdigga, on 05/04/2009, -2/+18pwnt.
  • DanteDefiance, on 05/05/2009, -0/+15That's why I use a complicated numeric password:

    1234

    Same as my briefcase!
  • zanderw00t, on 05/05/2009, -0/+15I don't understand why people don't have a truly random passwords... Mix of arbitrary uppercase and lower case letters with some numbers and a special character to boot. It is a pain in the ass the first couple of days you start using it, but the more that you do the more it becomes second nature when typing it... You wouldn't have to worry about anyone brute forcing your ***** :)
  • NathanielJ, on 05/05/2009, -5/+20Did you just reply to yourself hoping that we wouldn't notice that you're the same person?
  • jfulls, on 05/05/2009, -1/+14lmao
  • RumpleForeskin3, on 05/05/2009, -0/+13mrbabymanrules1189

    did it work for me??
  • Narcism, on 05/05/2009, -0/+13hunter2
    doesnt look like stars to me
  • inactive, on 05/05/2009, -0/+12EVERYBODY! TO THE HACKMOBILE!
  • mctom987, on 05/05/2009, -0/+12unless your password is stars

    ******************

    did it work for me??
  • holyskeleton, on 05/05/2009, -2/+14my wifi pw has 63 digits :)
  • SquareWheel, on 05/05/2009, -0/+11I think I'll use that as my password. No, not the random characters, the whole paragraph.
  • nepidae, on 05/05/2009, -1/+121 2 3 4 5
  • mpn401, on 05/05/2009, -1/+12My password is 1234567890987654321.
  • jostheller, on 05/05/2009, -1/+11that is absurd. don't broadcast, WPA2, and mac filtering will keep your neighbor off your network.
  • Andrwmorph, on 05/05/2009, -0/+10It makes it a bitch to log in to things from anything but your own computer, though.
  • sockpuppets, on 05/05/2009, -0/+10mine is puppet.

    Wait, I can still see mine?
  • amitforu78, on 05/05/2009, -0/+9thats scary
  • tnoy, on 05/05/2009, -0/+8Mine is "thisisthedefaultkeypleasedonthackme"
  • inactive, on 05/05/2009, -1/+9Its fun to be dick though. Also make the SSID really really huge.
  • sneaker98, on 05/05/2009, -0/+8Yeah, who cares about passwords on the internet. Not like anyone uses that old thing!!
  • MonoDede, on 05/05/2009, -3/+11I'm gonna hunter2 your hunter2, you hunter2'ing hunter2!!!
  • sourabhg, on 05/05/2009, -0/+8i think i should change mine
  • MtheoryX, on 05/05/2009, -0/+8mine is linksys

    Is this bad?
  • Fetching more discussions...
    Show 51 - 100 of 139 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.