Have You Been Pwned? - Computerphile

Another great video from Dr. Mike Pwned

thehypest

I feel like Dr. Pound was not at all surprised by the people who used correcthorsebatterystaple, yet somehow is still disappointed by them.

andrewrobertson

"Pwned? If I'm wrong then I'm a noob" - Mike knows what's up.

Xilefian

Sweet that the hash for "iloveyoukate" starts with BA8E 😍

Chocwish

1:48 6 years later, I pulled out K anonymity in a meeting on a solution with one of our organisations most senior security experts thanks to this video. Not only does it completely solve our problem and is easier to integrate than all the other solutions on the table, but best of all nobody but me had even heard of it before. Thanks Computerphile for creating these awesome videos that make even a remedial like me look good and be able to easily recall and explain concepts years later! :)

Paul-defn

The first thing I did once I find out about this website was to inspect all js to figure out what heck it was doing with the passwords.
Got really impressed! Kudos

1-2-3-4-5? That's amazing I've got the same combination on my luggage!

Furiends

Now that's an interesting way to check passwords without actually sending them. I like it.

Shadow

His explanations are truly great. Such a good teacher.

blegh

That git repository is a treat. The same program implemented in multiple languages: python, go, haskell, julia (I don't even know what that is), bash and perl, the last being my comfort zone. So now I have all these examples with which to compare and contrast. Very nice. I'll skip the java and powershell if that's OK.

Happily, all the passwords I tried passed. My trick is I use my social security number as my password for everything. That way, when one of those sites gets hacked, they'll have everything all in one go.

EmmetFord

I love this guy. Please do more neural network videos with him.

pomegranatechannel

8:53 - not all are publicly available, some are from private breaches which have been given to Troy

elliotgehin

So if I need to sell stolen password data do I go to the Pwn Shop??

I'll see myself out
E- auto @Cadde correct

redlaserfox

Hilariously, the other password from that same XKCD comic strip "Tr0ub4dor&3" which was used as an anti password cannot be found in that password API.

Kotfluegel

Great video. Not nearly as dense and dull as lectures, still informative, and actually entertaining and easy to watch.

charlesgerard

regarding bad practices people do with well intended info from these videos, I know its just a demonstration but I'd still like to point this out.
if you were to use some small commandline utility you threw together yourself to check your passwords, like in the video. they'll end up in your shell history(every command you ran goes there for a while) which is just a plaintext file. Effectively undoing the whole point of an encrypted password database.

cheers

_ck_

There's a problem using the command line as shown in this video: it will appear in your shell history and for a split second also in your list of current processes.
The best way is to have to type your password interactively.

OrganDanai

I checked, the password "computerphile" occurs one time in the pwned password list! Why? Who? What!

bloody_albatross

I've been pwned endless times lol

This is also a good way of finding out where other people have been signing up 😉

afcdf

From time to time i come back to this video for some entertainment

juliusbecker