this post was submitted on 14 Jul 2023
1176 points (92.2% liked)

Technology

59631 readers
2661 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

We've all been there.

you are viewing a single comment's thread
view the rest of the comments
[–] teft@lemmy.world 19 points 1 year ago (1 children)

You could store the passwords as hashes and just compare the hashed value.

[–] average650@lemmy.world 31 points 1 year ago (3 children)

yes, but then they are not salted, which is what they should be doing.

[–] Kolrami@lemmy.world 18 points 1 year ago

True, but for the same big O they can salt the password for each user and compare it to what they have stored. My big pet peeve (that I've actually seen) is when they say your password is too similar to an old one. I have no idea how that could be reasonably done if they're storing your password correctly.

[–] Bluehood380@lemmy.world 13 points 1 year ago

But are they peppered?

[–] teft@lemmy.world 6 points 1 year ago