@Cabrio@lemmy.world to Games@lemmy.worldEnglish • 9 months agoLarion Studios forum stores your passwords in unhashed plaintext.lemmy.worldimagemessage-square217fedilinkarrow-up1476arrow-down1153file-text
arrow-up1323arrow-down1imageLarion Studios forum stores your passwords in unhashed plaintext.lemmy.world@Cabrio@lemmy.world to Games@lemmy.worldEnglish • 9 months agomessage-square217fedilinkfile-text
Larion Studios forum stores your passwords in unhashed plaintext. Don’t use a password there that you’ve used anywhere else.
minus-squarevoxellinkfedilinkEnglish15•edit-29 months agohashing on client side is considered a bad idea and almost never done. you actually send your password “in plain text” every time you sign up.
minus-square@wim@lemmy.sdf.orglinkfedilinkEnglish-4•9 months agoIt’s not a bad idea and it is often done, just not in a browser/webapp context.
minus-square@hotdoge42@feddit.delinkfedilinkEnglish2•9 months agoCan you give an example where this is done?
minus-square@wim@lemmy.sdf.orglinkfedilinkEnglish3•edit-29 months agoSorry, I should have included an example in my comment to clarify, but I was in a rush. HMAC is a widely used technique relies on hashing of a shared secret for verifying authenticity and integrity of a message, for example.
hashing on client side is considered a bad idea and almost never done.
you actually send your password “in plain text” every time you sign up.
Really everytime you log in too.
It’s not a bad idea and it is often done, just not in a browser/webapp context.
deleted by creator
Can you give an example where this is done?
Sorry, I should have included an example in my comment to clarify, but I was in a rush.
HMAC is a widely used technique relies on hashing of a shared secret for verifying authenticity and integrity of a message, for example.