"Have I Been Pwned" - A great web tool for finding out if your username or e-mail address has been compromised

Update - 15 April 2019:  The PwnedList site now appears to be offline.  In it's place you can try the "Have I Been Pwned" site at https://haveibeenpwned.com/

While the "Have I Been Pwned" site suggests using 1Password for your password management, there is more than one way to accomplish this.  What's important is that you use strong credentials that are unique on each site.  That way if your credentials are compromised on one site, it only affects that one site.

Given that 8 character passwords are no longer considered secure, you can likely improve your security with the use of pass phrases and 2-Factor authentication. 

Here's a pass phrase generator that looks promising: https://www.useapassphrase.com/ and the site provides some good information on why a pass phrase may make more sense for your.

For 2FA, the Google Authenticator has been quite popular, but for people with mulitple devices, Authy is worth looking at too.


Below is the old information from this post.


"Have your accounts been compromised? Find out.

PwnedList is a tool that allows an average person to check if their accounts have been compromised. No passwords are stored in our database. ..."

The above text is from https://pwnedlist.com/ . This site is designed to be secure means of easily checking to see if your username or e-mail address is know to be compromised. You can even test your username or e-mail address without sharing them with the PwnedList web site. As shown on https://pwnedlist.com/learn you can hash your username or e-mail address with SHA-512 first and use the results to perform the lookup.

Another good recomendation provided on the site is in their Password tips.  The use of good password manager application can make the task of managing multiple credentials much easier and safer.


If you have any questions, please don't hesitate to contact me.


We Answer Your Questions: FAQ

Q: What is the maximum e-mail attachment size?

A: The ETRN.com e-mail servers do not limit the size of individual e-mail attachments. The ETRN.com e-mail servers do impose a 400 MB maximum total message size limit. Individual customers can choose a smaller message size limit. We can also customize the handling of "over-sized" e-mails. Please contact us to discuss your specific needs. A couple of important facts:

1. Attachments are typically encoded in what is called Base64[1]. As a result, the actual length of MIME-compliant Base64-encoded binary data is usually about 137% of the original file size.

2. E-mails often contain both plain text and HTML components. This also increases the overall size of the e-mail.