Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



Hashing Email Addresses For Web Considered Harmful

MisterBad microid doesn't seem to factor into it (155 comments)

It seems like the attack is just taking user names and other publicly-known data trying to determine an email address from them. Spammers don't need microid to confirm that their guess is correct; they'll just send to all 50 or 100 top email domains, hoping to get a hit.

The whole point of MicroID is that if someone knows your email address, they can tell that you are the author of the page. If your email address is easy to guess, then your email address will be revealed, _whether_or_not_ there's a microid here, there, or anywhere.

If an email address is easy to guess, then the email address is easy to guess. Not clear what new ground we're covering here.

more than 6 years ago


MisterBad hasn't submitted any stories.


MisterBad has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?