Most of the lessons gleaned from Pierce's exercise involve the secure storage of passwords at rest. We'll get to that in a moment. But first, a few observations about the top 20 passwords uncovered. First, they come from the beginning six million hashes stored in the Ashley Madison database. Depending on how the list was organized, that may mean they belong to the earliest six million accounts cre
![Lessons learned from cracking 4,000 Ashley Madison passwords](https://cdn-ak-scissors.b.st-hatena.com/image/square/84ade20ac5af07f770b1f894f7eb40c0a361cd22/height=288;version=1;width=512/https%3A%2F%2Fcdn.arstechnica.net%2Fwp-content%2Fuploads%2F2013%2F08%2Fmillion-dollar-password-500x215.jpg)