科技回声

8 条评论

fanf27 个月前

<< The Bcrypt algorithm was used to generate the cache key where we hash a combined string of userId + username + password. During specific conditions, this could allow users to authenticate by only providing the username with the stored cache key of a previous successful authentication. >><a href="https://man.openbsd.org/crypt" rel="nofollow">https://man.openbsd.org/crypt</a><< The maximum password length is 72. >>So if the userid is 18 digits, the username is 52 characters, and the delimiters are 1 character each, then the total length of the non-secret prefix is 72, and bcrypt will drop the secret suffix.You aren’t supposed to put more than the salt and the password into trad unix password hashes.

评论 #42023871 未加载

评论 #42026402 未加载

评论 #42023327 未加载

评论 #42023620 未加载

评论 #42023221 未加载

评论 #42023224 未加载

jadengis7 个月前

This is obviously a huge mistake by Okta (for the love of God understand how your crypto functions work before you apply them) but at the same time, a crypto function with a maximum input length that also auto-truncates the data sounds like bad API design. You are basically asking for someone to goof up and make a mistake. It's much better to implement these things defensively so that the caller doesn't inadvertently make a mistake. Especially with a hashing algorithm, because there is no way to verify that the result is correct.

评论 #42024392 未加载

评论 #42024807 未加载

djbusby7 个月前

Concise write up; not surprising that cache played a part.Can't tell if it's issue with BCrypt or with the state-data going into the key, or combo-cache lookup tho.

评论 #42024035 未加载

Forbo7 个月前

I'm really sick of companies disclosing this shit late Friday afternoon.Go fuck yourselves.Sincerely, Everyone in the industry

评论 #42023045 未加载

评论 #42023309 未加载

评论 #42023686 未加载

评论 #42028222 未加载

err4nt7 个月前

They had literally 1 job: secure authentication. This isn't the first time Okta has had a gaffe on a level that should cause any customer to reconsider. What's that saying, "Fool me once, shame on thee, fool me twice, shame on me". Don't get fooled by Okta a second, third, or fourth time.

_hyn37 个月前

Why is anyone actually using Okta for anything these days?IMO, better to choose point solutions and combine them.

demarq7 个月前

Wasn’t there a project posted here that can spot this things automatically.It’s was a fuzzer of some sort

Animats7 个月前

This is written in C, right?

评论 #42023830 未加载

评论 #42023944 未加载

评论 #42024321 未加载

8 条评论

fanf27 个月前

评论 #42023871 未加载

评论 #42026402 未加载

评论 #42023327 未加载

评论 #42023620 未加载

评论 #42023221 未加载

评论 #42023224 未加载

jadengis7 个月前

评论 #42024392 未加载

评论 #42024807 未加载

djbusby7 个月前

Concise write up; not surprising that cache played a part.Can't tell if it's issue with BCrypt or with the state-data going into the key, or combo-cache lookup tho.

评论 #42024035 未加载

Forbo7 个月前

I'm really sick of companies disclosing this shit late Friday afternoon.Go fuck yourselves.Sincerely, Everyone in the industry

评论 #42023045 未加载

评论 #42023309 未加载

评论 #42023686 未加载

评论 #42028222 未加载

err4nt7 个月前

_hyn37 个月前

Why is anyone actually using Okta for anything these days?IMO, better to choose point solutions and combine them.

demarq7 个月前

Wasn’t there a project posted here that can spot this things automatically.It’s was a fuzzer of some sort

Okta – Username Above 52 Characters Security Advisory

8 条评论

Okta – Username Above 52 Characters Security Advisory

8 条评论