It’s a good thing your opinion makes no difference then isn’t it.
It’s a good thing your opinion makes no difference then isn’t it.
Yes. I agree 100% with the things I can and I defer to your experience where I can’t. I used to write proprietary networking protocols 20 years ago and that’s the knowledge and experience I’m leaning on.
As a matter of practice we would ensure to process passwords by encrypting the datasteam directly from the input, and they were never unencrypted in handling, so as to protect against various system and browser vulnerabilities. It would be a big deal to have them accessible in plaintext beyond the user client, not to mention accessible and processable by email generation methods and insecure email protocols.
25, I used to write proprietary networking protocols.
The front end to backend traffic should be encrypted, hashing occurs on the backend. The backend should never have access to a variable with a plaintext password.
I’m going to have to stop replying because I don’t have the time to run every individual through infosec 101.
You have the text input feed directly into the encryption layer without an intermediary variable. The plaintext data should never be passable to an accessible variable which it must be to send the plaintext password in the email because it’s not an asynchronous process.
I’m surprised so many people are getting hung up on basic infosec.
Stored in memory is still stored. It’s still unencrypted during data processing. Still bad practice and a security vulnerability at best. Email isn’t E2E encrypted.
It sends the user generated password, not an auto generated one.
Everyone who votes for Trump is poor.
Poorly educated, poorly socialised, poorly raised.
Bleu, just the way I like it, never tried horse but for beef the saying goes:
Knock it’s horns off, wipe it’s bum, and twice over a candle.
That’s all you need bro, that’s what makes us family.
It’s possible to do both, I consume plenty of pirated media simply because it’s unavailable due to pathetic capitalist imposed digital distribution limitations and lack of equitable paid access.
I also consume other pirated media because I wouldn’t spend my resources for access because I don’t yet know the value of the content and won’t pay just for an opportunity to be disappointed, been there enough times to have learned that lesson. I’m happy to spend my time to find out your media sucks, but not my money, because that’s also my time with the addition that I’ve put actual effort into converting it into fungible assets.
I also deliberately pirate media that I would pay for and do understand the value of, both because I can’t always afford to purchase said product from a company making billions of dollars in exploitative corporate profits and because I have no interest in caring about that over my own personal satisfaction in life.
You encrypt the datastream from the text input on the client side before storing it in a variable. It’s not rocket science. I did this shit 20 years ago. Letting a plaintext password leave the user client is fucking stupid.