@Cabrio@lemmy.world to Games@lemmy.worldEnglish • 2 years agoLarion Studios forum stores your passwords in unhashed plaintext.lemmy.worldimagemessage-square216fedilinkarrow-up1475arrow-down1152file-text
arrow-up1323arrow-down1imageLarion Studios forum stores your passwords in unhashed plaintext.lemmy.world@Cabrio@lemmy.world to Games@lemmy.worldEnglish • 2 years agomessage-square216fedilinkfile-text
Larion Studios forum stores your passwords in unhashed plaintext. Don’t use a password there that you’ve used anywhere else.
minus-square@dangblingus@lemmy.worldlinkfedilinkEnglish13•2 years agoI’ve literally never had a service provider email me my own password ever. Maybe a OTP, but never my actual password. And especially not in plaintext. What would be the necessity behind emailing someone their own password? Doesn’t that defeat the purpose of having a password? Email isn’t secure.
minus-square@wim@lemmy.sdf.orglinkfedilinkEnglish12•2 years agoI find that very hard to believe. While it is less common nowadays, many, if not most, mailing list and forum software sent passwords in plaintext in emails. A lot of cottage industry web apps also did the same.
minus-square@EssentialCoffee@midwest.sociallinkfedilinkEnglish2•2 years agoThey’re probably just young.
minus-squarebnjmnlinkfedilinkEnglish4•2 years agoIdk if I’m misremembering, but it’s my impression that they did this a lot in the 2000s, haha. I guess bad practices have a habit of sticking around
minus-square@EssentialCoffee@midwest.sociallinkfedilinkEnglish2•2 years agoI’ve had service providers physically mail my own password to me before. Just crazy. Always use unique passwords for every site.
I’ve literally never had a service provider email me my own password ever. Maybe a OTP, but never my actual password. And especially not in plaintext.
What would be the necessity behind emailing someone their own password? Doesn’t that defeat the purpose of having a password? Email isn’t secure.
I find that very hard to believe. While it is less common nowadays, many, if not most, mailing list and forum software sent passwords in plaintext in emails.
A lot of cottage industry web apps also did the same.
They’re probably just young.
Idk if I’m misremembering, but it’s my impression that they did this a lot in the 2000s, haha. I guess bad practices have a habit of sticking around
I’ve had service providers physically mail my own password to me before. Just crazy.
Always use unique passwords for every site.