Cabrio@lemmy.worldtoMemes@lemmy.ml•it basically is already but you know, downgrades people!
27·
1 year agoIt’s because Spez has his head so far up Elon’s arse he’s wearing the same face.
- 8 Posts
- 281 Comments
Joined 1 year ago
Cake day: July 2nd, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
You can’t stop me from taking this as financial advice!
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
You encrypt the datastream from the text input on the client side before storing it in a variable. It’s not rocket science. I did this shit 20 years ago. Letting a plaintext password leave the user client is fucking stupid.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
It’s a good thing your opinion makes no difference then isn’t it.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
Yes. I agree 100% with the things I can and I defer to your experience where I can’t. I used to write proprietary networking protocols 20 years ago and that’s the knowledge and experience I’m leaning on.
As a matter of practice we would ensure to process passwords by encrypting the datasteam directly from the input, and they were never unencrypted in handling, so as to protect against various system and browser vulnerabilities. It would be a big deal to have them accessible in plaintext beyond the user client, not to mention accessible and processable by email generation methods and insecure email protocols.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
25, I used to write proprietary networking protocols.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
The front end to backend traffic should be encrypted, hashing occurs on the backend. The backend should never have access to a variable with a plaintext password.
I’m going to have to stop replying because I don’t have the time to run every individual through infosec 101.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
You have the text input feed directly into the encryption layer without an intermediary variable. The plaintext data should never be passable to an accessible variable which it must be to send the plaintext password in the email because it’s not an asynchronous process.
I’m surprised so many people are getting hung up on basic infosec.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English01·1 year ago
Stored in memory is still stored. It’s still unencrypted during data processing. Still bad practice and a security vulnerability at best. Email isn’t E2E encrypted.
Depends on your climate. 30C and 80% humidity and your bread goes mouldy in three days outside of the fridge.
I tighten bread bag knots to punish people for their hubris.
- Cabrio@lemmy.worldOPtoGames@lemmy.world•Larion Studios forum stores your passwords in unhashed plaintext.English0·1 year ago
It sends the user generated password, not an auto generated one.
- Cabrio@lemmy.worldtoMemes@lemmy.ml•Really be some crazy people out there thinking they piss gold25·1 year ago
I’m not wasting my time thinking about a dead platform.
Reminds me of all the people posting about reddit on lemmy.
Rent free.
- Cabrio@lemmy.worldtoTechnology@lemmy.ml•Reddit is removing ability to opt out of ad personalization based on your activity on the platform4·1 year ago
No, redact your data, get banned and still request your data every 30 days under GDPR (just submitted my 3rd).
Don’t let your memes be dreams.
10,000 Jigglevolts.