full-disclosure-uk December 2011 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: Re: [Full-disclosure] Large password list

Re: [Full-disclosure] Large password list

From: adam <adam_at_nospam>
Date: Fri Dec 02 2011 - 02:15:36 GMT
To: secn3t@gmail.com

In case you missed it, that's one of the other files he's hosting off that
website. Part of his plan to sell this groundbreaking .txt file, or
whatever.

On Thu, Dec 1, 2011 at 8:11 PM, xD 0x41 <secn3t@gmail.com> wrote:

> 22033538
>
> whats this hash for....
> nothin.
> hes a f00l.
>
> altho, i dont like you, atleast, you see a fool as i do.
> unfortunately, your not much better.
>
>
> On 2 December 2011 13:05, adam <adam@papsy.net> wrote:
> > Also, not to beat a dead horse, but..
> >
> >>>- cover cost of upstream bandwidth, the list is currently at 64MB
> >>> compressed and new versions are likely to only get larger
> >
> > Is also pretty ridiculous. Why? Because you're
> > offering hashes.txt, passwords.txt and uniqpass_preview.txt to the world:
> >
> > C:\Users\adam\Desktop>ls -la uniqpass_preview.txt | gawk "{print $5}"
> > 19855177
> >
> > C:\Users\adam\Desktop>ls -la passwords.txt | gawk "{print $5}"
> > 17496649
> >
> > C:\Users\adam\Desktop>ls -la hashes.txt | gawk "{print $5}"
> > 22033538
> >
> > C:\Users\adam\Desktop>echo 19855177 + 17496649 + 22033538 | bc
> > 59385364
> >
> > In total, 56MB and you're offering them for free and uncompressed.
> >
> > C:\Users\adam\Desktop>zip -9 combined.zip passwords.txt
> uniqpass_preview.txt
> > hashes.txt
> > adding: passwords.txt (164 bytes security) (deflated 60%)
> > adding: uniqpass_preview.txt (164 bytes security) (deflated 38%)
> > adding: hashes.txt (164 bytes security) (deflated 46%)
> >
> > C:\Users\adam\Desktop>ls -la combined.zip | gawk "{print $5}"
> > 31337317
> >
> > Meanwhile, if you were compressing them: they'd be almost half the size.
> But
> > you're not, you don't even seem concerned with doing so, and you're
> going to
> > pretend that 8MB is really making that big of a difference? If so, why
> are
> > you wasting 27MB by offering those 3 files uncompressed? That doesn't
> really
> > make much sense to me.
> >
> > On Thu, Dec 1, 2011 at 7:52 PM, Benji <me@b3nji.com> wrote:
> >>
> >> Which country is "UNIQPASS" registered as a tm?
> >>
> >>
> >> On Fri, Dec 2, 2011 at 1:47 AM, adam <adam@papsy.net> wrote:
> >>>
> >>> >>- reduce abuse
> >>>
> >>> The concerning part is that you're serious. Tell me, how does someone
> >>> paying for a list of STOLEN passwords reduce abuse?
> >>>
> >>> This email, your obsession with LulzSec and the disclaimer on your site
> >>> make it pretty clear where the information is coming from, so what
> kind of
> >>> abuse potential does this have by someone not paying? And who are you
> to not
> >>> only take credit, but also demand payment, for other peoples' efforts?
> >>>
> >>> I'm partly tempted to buy and post the list here just to spite you for
> >>> being so idiotic.
> >>>
> >>> On Thu, Dec 1, 2011 at 7:16 PM, Addy Yeow <ayeowch@gmail.com> wrote:
> >>>>
> >>>> There are many password lists already available for free out in the
> wild
> >>>> but mostly lack the quality.
> >>>>
> >>>> The minimal fee for UNIQPASS is necessary to help:
> >>>> - keep ongoing effort to improve the quality of the list over time
> >>>> - ensure frequent updates, i.e. when new leaked databases appear
> >>>> (existing users of UNIQPASS get updated copy for free)
> >>>> - cover cost of upstream bandwidth, the list is currently at 64MB
> >>>> compressed and new versions are likely to only get larger
> >>>> - reduce abuse
> >>>>
> >>>> On Fri, Dec 2, 2011 at 1:33 AM, Fabio Pietrosanti (naif)
> >>>> <lists@infosecurity.ch> wrote:
> >>>>>
> >>>>> On 12/1/11 6:14 PM, Addy Yeow wrote:
> >>>>> > I thought some of you may find this large password list useful,
> over
> >>>>> > 27
> >>>>> > million entries.
> >>>>> > http://dazzlepod.com/uniqpass/ (it's a paid list though, at $4.99)
> >>>>>
> >>>>> Anyone linking a warez version (Why pay $4.99?) ?
> >>>>>
> >>>>> -naif
> >>>>>
> >>>>> _______________________________________________
> >>>>> Full-Disclosure - We believe in it.
> >>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >>>>> Hosted and sponsored by Secunia - http://secunia.com/
> >>>>
> >>>>
> >>>>
> >>>>
> >>>> _______________________________________________
> >>>> Full-Disclosure - We believe in it.
> >>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >>>> Hosted and sponsored by Secunia - http://secunia.com/
> >>>
> >>>
> >>>
> >>> _______________________________________________
> >>> Full-Disclosure - We believe in it.
> >>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >>> Hosted and sponsored by Secunia - http://secunia.com/
> >>
> >>
> >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/