Larion Studios forum stores your passwords in unhashed plaintext.
Larion Studios forum stores your passwords in unhashed plaintext. Don't use a password there that you've used anywhere else.
You are viewing a single comment
Larion Studios forum stores your passwords in unhashed plaintext. Don't use a password there that you've used anywhere else.
hashing on client side is considered a bad idea and almost never done.
you actually send your password "in plain text" every time you sign up.
Really everytime you log in too.
It's not a bad idea and it is often done, just not in a browser/webapp context.
Can you give an example where this is done?
Sorry, I should have included an example in my comment to clarify, but I was in a rush.
HMAC is a widely used technique relies on hashing of a shared secret for verifying authenticity and integrity of a message, for example.