this post was submitted on 14 Jul 2023
1177 points (92.1% liked)

Technology

59092 readers
6622 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

We've all been there.

you are viewing a single comment's thread
view the rest of the comments
[–] average650@lemmy.world 28 points 1 year ago (1 children)

The worst part is that if they know that password is already in use.... then they aren't storing their passwords appropriately.

[–] teft@lemmy.world 17 points 1 year ago (1 children)

You could store the passwords as hashes and just compare the hashed value.

[–] average650@lemmy.world 29 points 1 year ago (3 children)

yes, but then they are not salted, which is what they should be doing.

[–] Kolrami@lemmy.world 17 points 1 year ago

True, but for the same big O they can salt the password for each user and compare it to what they have stored. My big pet peeve (that I've actually seen) is when they say your password is too similar to an old one. I have no idea how that could be reasonably done if they're storing your password correctly.

[–] Bluehood380@lemmy.world 12 points 1 year ago

But are they peppered?

[–] teft@lemmy.world 6 points 1 year ago