28 comments

[ 3.9 ms ] story [ 67.6 ms ] thread
I find it most amusing that that link has my logged in username and a password hash as the last line, when i view it.
It appears based on one's cookie, as it is isn't present if I delete my cookies.
(comment deleted)
Here is the complete table:

  spez           GbK4WZMpXZgmYlQ+H3/68Q==  shill
  daniel         X03MO1qnZdYdgyfeuILPmQ==  password
  spladug        Xee7PCMnQfRh88zRPBunoA==  yee
  neil           KrljkMfb40Od500MmwsXZw==  hunter2
  neal           Xr4ilOzQ4PCOq3aQ0qbuaQ==  secret
  sam            BtgOsMULSaUJtJ8kJOjIBQ==  dog
  neel           0HfyRN74pw5ep1i9g1L82A==  cat
  kneel          g+Spau2WQ2xiG5gJ4lizCQ==  fish
  kevin          yOjfiVwsrhZrrQJ/3xUzWw==  garbage
  kavin          31PKJoJAynZnDIVm7lRWig==  computer
  kovin          G43Qgw1Fk6OIrzganMC2WA==  fish2
  powerlanguage  A9kE9Zud+aPy76hqmMj3lQ==  eggdog
  robin          q67PjKP5jcE+7susJjzT7Q==  bird
  justin         zRTDI5AgJOcshQqoKNY0pw==  case
  you            bXHoGvP3ISkv0Fxrk0vS+Q==  gullible
The encrypted session cookie is how their server establishes you are authenticated. By deleting your cookie, you essentially logged out of your account which is why the server does not have your username to add to the list anymore.
(comment deleted)
it's almost like it's a riddle
Finally a page on Reddit that doesn't try ten times to convert you to an app user if you are using a mobile browser.
i.reddit.com
Cool, that's the old mobile site. How do I get the desktop version of reddit on my phone?
Does requesting the desktop site work? That changes your user agent to a desktop browser
with the incredibly dark pattern of saying you can 'continue' to the app with a big button, or 'go to the mobile site' with small text below. Of course you are already on the mobile site, so to use this wording is intentionally malicious.
Sometimes it won’t let you continue at all without logging in, with “go to the mobile site” being replaced with “log into the mobile site”

This isn’t consistent though and I only get it maybe once a week. I just give up and check again later.

My reddit use has significantly dropped off when I was faced with the horror that is their mobile site. That banner is downright offensive.
My reddit use dropped off completely when they began censoring free speech and claiming it was good for the community.
It's more useful after chrome translates from the original maltese.
TIL: Chrome thinks these passwords are written in Maltese
I'm under the impression Google Translate uses relative character frequencies to suggest which language.

If you are looking at a page which is mostly hashes, the distribution of the hash values likely affects which language is suggested.

looks like /etc/shadow, not passwd
There was a time when they weren't separate...
(comment deleted)
Explain please?
https://en.wikipedia.org/wiki/Passwd#History

tl;dr: Originally, password hashes were stored in /etc/passwd (as the name might imply). It wasn't until "the mid-1980s" that /etc/shadow was invented to fix the security hole.

Knowing the quality of consumer grade router firmware, that fix may be available for your router sometime within the next year </trollface.jpeg>