HTTPS is vulnerable to BREACH exploit

daveinuk · Post by **daveinuk** » Sat Aug 03, 2013 11:54 am

There's an awful lot to be said for not turning into a cashless society . . . . . . .. no-one's breaching my wallet .........

KBD47 · Post by **KBD47** » Sat Aug 03, 2013 1:20 pm

The words "Security" "Privacy" and "Internet" no longer fit into the same sentence it seems. I can't help but think the long term chilling effect for the Internet regarding all these issues could devastate Internet commerce, free and open discussion, sharing of ideas and views, all of which helped to make the Internet great

Gotsu Totsu Kotsu II · Thu Sep 12, 2013 12:10 am

even if, http://hackersnewsbulletin.com/2013/09/new-password-cracking-software-tries-8-million-times-per-second-crack-password.html

dee. · Post by **dee.** » Sat Sep 14, 2013 7:03 pm

Good reason to support Bitcoin. No need to depend on https for bank transfers...

linuxviolin · Post by **linuxviolin** » Sun Sep 15, 2013 12:46 pm

About what the first poster gives, I am not convinced of the generality of this approach. Not too practical, I am sure.

And about the Hakers News Bulletin article given by Gotsu Totsu Kotsu II above, it is still not too practical. There are systems that block access for a time after a number of failed attempts.

Linux Mint Forums

HTTPS is vulnerable to BREACH exploit

Re: HTTPS is vulnerable to BREACH exploit

Re: HTTPS is vulnerable to BREACH exploit

New Password Cracking software tries 8 Million Times Per Sec

Re: HTTPS is vulnerable to BREACH exploit

Re: HTTPS is vulnerable to BREACH exploit