1. Home

Encrypt all the things!

You are reading a single comment by @Velocio and its replies. Click here to read the full conversation.

  • It breaks their database and any transformation... i.e. the password in a JSON file, or XML file, and being concatenated into a SQL insert.

    It means that they aren't hashing the password immediately, and are actually keeping the plain text password.

  • Now that's just incredibly bad. Non hashed passwords!? No thanks.

  • yeah, I hate sites that do that.

    I'd also put money on them blocking pasting into password fields to try and block password managers.

    Bank Grade security - no ta.

About

Avatar for Velocio @Velocio started

About Terms of Use Privacy Policy Cookie Policy Report a problem