HIBP (Joomla)

HIBP (Joomla)

The, Password, Been, Have, Database, That, This, Api, Used, Credentials, Compromised, Security, Exists, Use, Times, Can, Whether, Haveibeenpwned, Already, Being, New, Plugin

Joomla extension HIBP (Joomla). This plugin aims to improve password security for your sites users by preventing them from using a password that is know

This plugin aims to improve password security for your site's users by preventing them from using a password that is known to have been compromised.

In order to do this, the plugin makes use of the "Have I Been Pwned" API, operated by noted security researcher Troy Hunt.

HaveIBeenPwned.com contains an archive of user credentials that have been made public after being hacked, and allows anyone to query the database to find out whether their credentials have been compromised.

For the purposes of validating a new password, the API can be used to determine whether the password being entered has already been compromised. If the requested password already exists in the HaveIBeenPwned database, it should be assumed to be insecure, because many hacking attempts will use existing known credentials when attempting to crack new passwords.

In addition, the API also returns the number of times that the specified password exists in the database. This can also be used to establish the security (or lack thereof) of a given password; if it exists many times in the database, then it is clearly a commonly used password, and thus vulnerable to attack even if it successfully passes the conventional complexity tests.


Zdroj: Joomla Rozšírenia

2018-03-09 20:39:28 2622 705Facebook | Twitter | Google+ | LinkedIn
Web PHP developer Milan Jankovec

<Milan Jankovec> Full Stack Web Developer

Vytváram webové stránky a aplikácie na mieru. Čistý a validný HTML5 kód na každej platforme, moderné animované CSS3 štýly a neuveriteľné JavaScript kúzla. Bezpečný a rýchly PHP kód bez obmedzení s geniálnou architektúrou databáz.

Najčítanejšie články

What's New in MySQL 5.6 Release Candidate

The MySQL 5.6 Release Candidate is an aggregation of the previous MySQL 5.6 Development Milestone Releases (DMR) and provides a true functio... čítať viac

MySQL 5.6: Improvements in Thread Pool

MySQL Thread Pool has now been updated for the MySQL 5.6 version. Obviously, with the much higher concurrency of the MySQL Server in 5.6 its... čítať viac

DBA and Developer Guide to MySQL 5.6

MySQL is the most trusted and depended-on open source database platform in use today. As such, 9 out of the top 10 most popular and highly-t... čítať viac

MySQL Applier for Hadoop

To support the growing emphasis on real-time operations, MySQL is releasing a new MySQL Applier for Hadoop to enable the replication of even... čítať viac

MySQL Cluster 7.3 GA: Increasing Developer Flexibility and Simplicity

The MySQL team at Oracle are excited to announce the immediate availability of the MySQL Cluster 7.3 Development Milestone Release GA releas... čítať viac

MySQL Cluster Auto-Installer: Video Tutorial

Learn how easy it is to deploy a MySQL Cluster database that has been configured to best meet your applications needs within your environmen... čítať viac

MySQL Replication Utilities: Video Tutorial

Learn how to use MySQL 5.6 and the MySQL Utilities to setup, monitor and manage your MySQL replication topology. See how a single command ca... čítať viac

MySQL 5.6 Replication - Enabling the Next Generation of Web & Cloud Services

The new MySQL 5.6.5 Development Milestone Release (DMR) introduces a much anticipated feature - Global Transaction Identifiers (GTIDs) for M... čítať viac

Dnešný výber

Klarna invoice and partial payment methods fully integrated in Opencart 1.5.5.1

We are pleased to announce, that Klarnas invoice and partial payment service for e-commerce now are fully integrated into Opencart 1.5.5.1.... čítať viac

JMG WhatsApp Button (Joomla)

Joomla extension JMG WhatsApp Button (Joomla). Click on JMG WhatsApp Button for Joomla allows you to begin a chat with someone without havin... čítať viac

Apache Tomcat 7.0.77 released

The Apache Tomcat team announces the immediate availability of ApacheTomcat 7.0.77.Apache Tomcat is an open source softw... čítať viac

Apache Mahout 0.12.0 Release

The Apache Mahout PMC is pleased to announce the release of Mahout 0.12.0.Mahouts goal is to create an environment for q... čítať viac

W3C Invites Implementations of Authoring Tool Accessibility Guidelines (ATAG) 2.0

The Authoring Tool Accessibility Guidelines Working Group (AUWG) invites implementations of the Candidate Recommendation Authoring Tool Acce... čítať viac

Za Canvas Menu (Joomla)

Joomla extension Za Canvas Menu (Joomla). Responsive multi purpose flyout menu. The Canvas sidebar add some unexpected and stylish moves to ... čítať viac

Wiz Promotion Code for virtuemart (Joomla)

Joomla extension Wiz Promotion Code for virtuemart (Joomla). Wiz promotion code module is a light module which able user to load it fast. Th... čítať viac

Apache Tomcat 8.0.17 available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.0.17. Apache Tomcat 8 is an open source software implementati... čítať viac