(full site)
Fark.com

Try out our new mobile site!


Back To Main
   It was a sh*tty Gmail password that took down Petraeus

12 Nov 2012 05:31 PM   |   23581 clicks   |   Uproxx
Showing 1-50 of 175 comments
Refresh Page 2
View Comments:
Brontes    [TotalFark]  
GenBigdick69(.Y.)

12 Nov 2012 11:45 AM
xynix    [TotalFark]  
Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.

12 Nov 2012 12:08 PM
toraque    [TotalFark]  
Well, this kind of thing is why I take password security seriously. If someone were to hack my Gmail password, they'll have the combination to my luggage as well.

12 Nov 2012 12:28 PM
basemetal    [TotalFark]  
PaSsWoRd

12 Nov 2012 02:02 PM
Sgt Otter    [TotalFark]  

xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.


I doubt she even "hacked" into it. She probably used his laptop while he was in the shower, found out that he was still logged into Gmail, and started snooping.

12 Nov 2012 02:02 PM
ArkAngel    [TotalFark]  
12345

12 Nov 2012 02:20 PM
Glenford     
That's the kind of thing an idiot would have on his luggage!

12 Nov 2012 02:20 PM
MaudlinMutantMollusk    [TotalFark]  
4StarStud

12 Nov 2012 02:27 PM
Brontes    [TotalFark]  

Sgt Otter: xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.

I doubt she even "hacked" into it. She probably used his laptop while he was in the shower, found out that he was still logged into Gmail, and started snooping.


Yeah, this is probably the simplest and best explanation.

12 Nov 2012 02:27 PM
Jamdug!     
PasswordisTaco

12 Nov 2012 02:35 PM
xanadian    [TotalFark]  
From what I've been hearing, there's been a string of bad decisions on Petraeus's part... :/

12 Nov 2012 02:43 PM
Because People in power are Stupid    [TotalFark]  
i.dailymail.co.ukView Full Size

12 Nov 2012 02:44 PM
xanadian    [TotalFark]  

Sgt Otter: xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.

I doubt she even "hacked" into it. She probably used his laptop while he was in the shower, found out that he was still logged into Gmail, and started snooping.


TFA says that General Dumbass GAVE the password to her.

12 Nov 2012 02:46 PM
Ed Finnerty     
dtdstudios.comView Full Size
 

/popcorn

12 Nov 2012 02:55 PM
The Stealth Hippopotamus    [TotalFark]  

xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.


Or, and this is just a thought, maybe just maybe no one cares what you do?

12 Nov 2012 03:00 PM
cretinbob     
i.huffpost.comView Full Size

12 Nov 2012 03:33 PM
serial_crusher    [TotalFark]  
I think you're over-inferring on this one, subby.
TFA: During the course of the investigation, federal agents monitoring Broadwell's emails found messages coming from Petraeus' personal Gmail account, and were concerned that his account had been hacked

Sounds to me like they thought, "surely this isn't the actual CIA director flirting with this hot reporter chick?! He knows better than that"

TFO also has this to say: Apparently Broadwell got the names and email addresses of people she was sending these emails to from Petraeus' personal Gmail account., which is pure speculation as is the source article for that statement.

So, we don't know Patraeus had a weak password. Evidently his mistress did, or it's possible the FBI went through whatever legal hoops would allow them to wiretap her account.
We're back to "don't stick your dick in crazy" being the only rule we know Patraeus broke.

12 Nov 2012 03:34 PM
Kittypie070    [TotalFark]  
Why the frak are y'all showing pics of Palin!?

12 Nov 2012 03:35 PM
serial_crusher    [TotalFark]  

Sgt Otter: I doubt she even "hacked" into it. She probably used his laptop while he was in the shower, found out that he was still logged into Gmail, and started snooping.


That does sound feasible, and certainly would be something we could blame Patraeus for. If you're in that kind of position, learn to use the logout button.

12 Nov 2012 03:36 PM
serial_crusher    [TotalFark]  

Kittypie070: Why the frak are y'all showing pics of Palin!?


her yahoo mail account was compromised back in 2008 by a "hacker" armed with her wikipedia page and her answers to the "password recovery" questions, which she evidently filled out with real information instead of just random characters that she couldn't possibly hope to remember, like most people do.

12 Nov 2012 03:38 PM
scottydoesntknow    [TotalFark]  
l3.yimg.comView Full Size


The woman next to Petraeus' wife is Jill Kelley (2nd from right). She's the one that Broadwell sent threatening e-mails to. Apparently both parties are saying there was absolutely nothing going on between both Jill and David.

So it looks like Petraeus' biggest mistake was sticking his dick in crazy

12 Nov 2012 03:48 PM
Kittypie070    [TotalFark]  
Oh.

12 Nov 2012 03:49 PM
I_Am_Weasel    [TotalFark]  
Because it's what I think of when I see his name...

24.media.tumblr.comView Full Size


General Petraeus! Genreal Petreaus!

12 Nov 2012 03:56 PM
Ambivalence    [TotalFark]  
that the CIA director would even HAVE a Gmail or hotmail or yahoo email account should be grounds for dismissal.

Seriously? seriously??!

12 Nov 2012 04:02 PM
RoyBatty     
This article is almost entirely wrong on the facts.

Her password / Their password wasn't all that shiatty, but it was too short: "vsKLVg8L" Link Link

Well too short is shiatty, even when you use a legitimately difficult password.

But the real problem was over at Stratfor which let their password database get hacked and which didn't salt their password database.

12 Nov 2012 04:07 PM
bronyaur1    [TotalFark]  

Sgt Otter: xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.

I doubt she even "hacked" into it. She probably used his laptop while he was in the shower, found out that he was still logged into Gmail, and started snooping.


She was military intelligence. That is how they work.

12 Nov 2012 04:18 PM
cretinbob     

Kittypie070: Why the frak are y'all showing pics of Palin!?


Because you clearly haven't paid attention
sigh....


popcorn

Yes, This does put him in the same league as her.

12 Nov 2012 04:43 PM
ZAZ    [TotalFark]  
But the real problem was over at Stratfor which let their password database get hacked and which didn't salt their password database.

Traditional Unix-style salting doesn't help against a targeted attack because the salt is stored with the password. It is intended to prevent bulk or precomputed attacks. Is there some other method that is considered a best practice in the web services world?

12 Nov 2012 04:46 PM
RoyBatty     

ZAZ: But the real problem was over at Stratfor which let their password database get hacked and which didn't salt their password database.

Traditional Unix-style salting doesn't help against a targeted attack because the salt is stored with the password. It is intended to prevent bulk or precomputed attacks. Is there some other method that is considered a best practice in the web services world?


I believe the Stratfor hack was basically a bulk attack. The database was released along with all sorts of clear text credit card numbers and email addresses along with the MD5 password hashes.

Is there some other method that is considered a best practice in the web services world?

I think salting the db still helps as I mentioned above, but I've been wondering about this myself.

Basically, I think it means you can't use basic or digest HTTP authentication but have to build your own login forms that use SSL encryption, and you rate limit password attempts.

I think.

12 Nov 2012 05:28 PM
meat0918     
Disapproves

3.bp.blogspot.comView Full Size

12 Nov 2012 05:34 PM
Dow Jones and the Temple of Doom     
More like General Betray Us!

12 Nov 2012 05:35 PM
meat0918     

RoyBatty: ZAZ: But the real problem was over at Stratfor which let their password database get hacked and which didn't salt their password database.

Traditional Unix-style salting doesn't help against a targeted attack because the salt is stored with the password. It is intended to prevent bulk or precomputed attacks. Is there some other method that is considered a best practice in the web services world?

I believe the Stratfor hack was basically a bulk attack. The database was released along with all sorts of clear text credit card numbers and email addresses along with the MD5 password hashes.

Is there some other method that is considered a best practice in the web services world?

I think salting the db still helps as I mentioned above, but I've been wondering about this myself.

Basically, I think it means you can't use basic or digest HTTP authentication but have to build your own login forms that use SSL encryption, and you rate limit password attempts.

I think.


I thought part of the Stratfor compromise was the morons that signed up for compromised (i.e. porn) sites with their stratfor email address and used their same freaking password!

12 Nov 2012 05:36 PM
Fark Rye For Many Whores     

scottydoesntknow: [l3.yimg.com image 850x566]

The woman next to Petraeus' wife is Jill Kelley (2nd from right). She's the one that Broadwell sent threatening e-mails to. Apparently both parties are saying there was absolutely nothing going on between both Jill and David.

So it looks like Petraeus' biggest mistake was sticking his dick in crazy


That photoshop is way below my standards, look at those sharp edges, I would not bang a photoshop that looked like that.

12 Nov 2012 05:36 PM
pyrotek85     

Brontes: Sgt Otter: xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.

I doubt she even "hacked" into it. She probably used his laptop while he was in the shower, found out that he was still logged into Gmail, and started snooping.

Yeah, this is probably the simplest and best explanation.


I hope that's how it happened. It'd be pretty sad if a guy in that position didn't use a good password (or better yet the 2-step verification).

12 Nov 2012 05:37 PM
whither_apophis     
Surg3!

12 Nov 2012 05:38 PM
farkingismybusiness     
www.radioactive-software.comView Full Size

12 Nov 2012 05:39 PM
Counter_Intelligent     
'twas his own vanity that bested him... or something.

12 Nov 2012 05:39 PM
AiryAnne     
It was f--king around on his wife that took him down.

12 Nov 2012 05:39 PM
cloud_van_dame     
CIA director, fails to secure his own email account. seriously embarrassing.
The affair is not the problem here.

12 Nov 2012 05:39 PM
iheartscotch    [TotalFark]  

toraque: Well, this kind of thing is why I take password security seriously. If someone were to hack my Gmail password, they'll have the combination to my luggage as well.


Is your password 1-2-3-4-5?

/ oblig

12 Nov 2012 05:40 PM
degenerate-afro     
The article never mentions if the password is sh*tty or not. The problem was telling it to a jealous biatch. The password could have been "173467321476Charlie32789777643Tango73 2Victor7311788873247678976437" but as soon as you tell it to someone else or post it to Youtube it's no longer secure.

12 Nov 2012 05:41 PM
PenguinCam     

Ambivalence: that the CIA director would even HAVE a Gmail or hotmail or yahoo email account should be grounds for dismissal.

Seriously? seriously??!


This one Canadian reporter, Rosie Dimanno, thinks the President is being a prude about it. Never mind that people working in the CIA would lose their security clearance and hence their jobs for doing the same.

Obama is being a prude

Wow.

12 Nov 2012 05:41 PM
bwilson27     
Cause on Fark, everyone is a leet haxxor.

12 Nov 2012 05:41 PM
HotIgneous Intruder     
The flag traits in the fifth stack prevent salting neutralization, so Petraeus wasn't to blame, people.

/Never stick your dick in crazy.

12 Nov 2012 05:43 PM
PullmyHair     

toraque: Well, this kind of thing is why I take password security seriously. If someone were to hack my Gmail password, they'll have the combination to my luggage as well.



Glenford: That's the kind of thing an idiot would have on his luggage!


Well...

12 Nov 2012 05:43 PM
Buckner     

xynix: Hmm. My Gmail password hasn't changed since I signed up for it when it was beta.. It's pretty easy too. I guess the difference is I'm not having an affair, have never done anything illegal, have never emailed bad pics.. Etc. Pretty much just spam and electric bills.


Ask my how I know you are lying.

12 Nov 2012 05:44 PM
p4p3rm4t3     
img526.imageshack.usView Full Size

/is an archaic form of security

12 Nov 2012 05:44 PM
Day_Old_Dutchie     
BOSCO

12 Nov 2012 05:44 PM
RoyBatty     

cloud_van_dame: CIA director, fails to secure his own email account. seriously embarrassing.
The affair is not the problem here.


The part I have the hardest understanding is not everyone not securing their email, but the part where Paula Broadwell, married, with successful husband, children, highly successful career, plus secret affair with head of CIA, puts all that at risk by sending out taunts and threats to someone perceived as a rival and threats apparently realistic enough that the target goes to the FBI.

That's the part where I can only rationalize it by realizing how much of "success" is pure luck.

12 Nov 2012 05:45 PM
Revanche     

AiryAnne: It was f--king around on his wife that took him down.


This. If this were Reddit, you'd get an up-vote, sir.

If his wife can't trust him, then why should his country?

12 Nov 2012 05:45 PM
Showing 1-50 of 175 comments
Refresh Page 2
View Comments:
This thread is closed to new comments.


Back To Main

More Headlines:
Main | Sports | Business | Geek | Entertainment | Politics | Video | FarkUs | Contests | Fark Party | Combined