Passwords sent as plaintext? (infosec.pub)

submitted 2 years ago by iamak@infosec.pub to c/infosecpub@infosec.pub

23 comments fedilink hide all child comments

I tried logging in on browser and I had inspected the request. My password was sent in plaintext. Is this a infosec.pub issue or a Lemmy one?

you are viewing a single comment's thread
view the rest of the comments

[-] clb92@kbin.social 6 points 2 years ago

The first paragraph is correct, but your second paragraph is not. A cryptographic hash function is a lossy one-way function. Knowing exactly how something was hashed does not mean you can turn the hash back into the starting value again.

permalink
fedilink
source
parent

this post was submitted on 18 Jul 2023

13 points (100.0% liked)

Discussions related to Infosec.pub

1260 readers

1 users here now

founded 2 years ago

MODERATORS

jerry@infosec.pub