this post was submitted on 14 Jul 2023
1176 points (92.2% liked)

Technology

59651 readers
4737 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

We've all been there.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 30 points 1 year ago (1 children)

The worst part is that if they know that password is already in use.... then they aren't storing their passwords appropriately.

[–] [email protected] 19 points 1 year ago (1 children)

You could store the passwords as hashes and just compare the hashed value.

[–] [email protected] 31 points 1 year ago (3 children)

yes, but then they are not salted, which is what they should be doing.

[–] [email protected] 18 points 1 year ago

True, but for the same big O they can salt the password for each user and compare it to what they have stored. My big pet peeve (that I've actually seen) is when they say your password is too similar to an old one. I have no idea how that could be reasonably done if they're storing your password correctly.

[–] [email protected] 13 points 1 year ago

But are they peppered?

[–] [email protected] 6 points 1 year ago