323

Larion Studios forum stores your passwords in unhashed plaintext.(lemmy.world)

posted
by
Avatar
Cabrio@lemmy.world
in
Avatar
games@lemmy.world
217 comments
hidereport

Larion Studios forum stores your passwords in unhashed plaintext. Don’t use a password there that you’ve used anywhere else.

Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments View context
Avatar
fireflash38@lemmy.world
1 point

There are ways to have passwords transmitted completely encrypted, but it involves hitting the backend for a challenge, then using that challenge to encrypt the password client side before sending. It still gets decrypted on the backend tho before hash and store.

permalink
report
parent
reply
Avatar
Kevin@lemmy.world
2 points

Yeah, but SSL/TLS also solves that problem in a standardized way.

In either case, the backend will have the plaintext password regardless of how it’s transmitted.

permalink
report
parent
reply

Games

!games@lemmy.world

Create post

Welcome to the largest gaming community on Lemmy! Discussion for all kinds of games. Video games, tabletop games, card games etc.

Weekly Threads:

What Are You Playing?

The Weekly Discussion Topic

Rules:

  1. Submissions have to be related to games

  2. No bigotry or harassment, be civil

  3. No excessive self-promotion

  4. Stay on-topic; no memes, funny videos, giveaways, reposts, or low-effort posts

  5. Mark Spoilers and NSFW

  6. No linking to piracy

More information about the community rules can be found here.

Community stats

  • 9K

    Monthly active users

  • 4.4K

    Posts

  • 91K

    Comments

Community moderators