Cabrio@lemmy.world to Games@lemmy.worldEnglish · 2 years agoLarion Studios forum stores your passwords in unhashed plaintext.lemmy.worldimagemessage-square218fedilinkarrow-up1474arrow-down1153file-text
arrow-up1321arrow-down1imageLarion Studios forum stores your passwords in unhashed plaintext.lemmy.worldCabrio@lemmy.world to Games@lemmy.worldEnglish · 2 years agomessage-square218fedilinkfile-text
Larion Studios forum stores your passwords in unhashed plaintext. Don’t use a password there that you’ve used anywhere else.
minus-squaredangblingus@lemmy.worldlinkfedilinkEnglisharrow-up19arrow-down6·2 years agoI’ve literally never had a service provider email me my own password ever. Maybe a OTP, but never my actual password. And especially not in plaintext. What would be the necessity behind emailing someone their own password? Doesn’t that defeat the purpose of having a password? Email isn’t secure.
minus-squarewim@lemmy.sdf.orglinkfedilinkEnglisharrow-up12·2 years agoI find that very hard to believe. While it is less common nowadays, many, if not most, mailing list and forum software sent passwords in plaintext in emails. A lot of cottage industry web apps also did the same.
minus-squareEssentialCoffee@midwest.sociallinkfedilinkEnglisharrow-up2·2 years agoThey’re probably just young.
minus-squarebnjmn@lemmy.worldlinkfedilinkEnglisharrow-up4·2 years agoIdk if I’m misremembering, but it’s my impression that they did this a lot in the 2000s, haha. I guess bad practices have a habit of sticking around
minus-squareEssentialCoffee@midwest.sociallinkfedilinkEnglisharrow-up2·2 years agoI’ve had service providers physically mail my own password to me before. Just crazy. Always use unique passwords for every site.
I’ve literally never had a service provider email me my own password ever. Maybe a OTP, but never my actual password. And especially not in plaintext.
What would be the necessity behind emailing someone their own password? Doesn’t that defeat the purpose of having a password? Email isn’t secure.
I find that very hard to believe. While it is less common nowadays, many, if not most, mailing list and forum software sent passwords in plaintext in emails.
A lot of cottage industry web apps also did the same.
They’re probably just young.
Idk if I’m misremembering, but it’s my impression that they did this a lot in the 2000s, haha. I guess bad practices have a habit of sticking around
I’ve had service providers physically mail my own password to me before. Just crazy.
Always use unique passwords for every site.