Can somebody solve this puzzle?(lemmy.today)

posted 12 days ago

sorter_plainview@lemmy.today

programmer_humor@programming.dev

114 commentshide report

Edit: @Successful_Try543@feddit.org solved it. It says “one special character”. Not “at least one”.

Sort:

Hot Top Controversial New Old

You are viewing a single thread.

View all comments View context

[ - ]

SpaceCowboy@lemmy.ca

2 points

12 days ago

IMO it should even be hashed on the client side before being sent so that it doesn’t show up as plaintext in any http requests or logs. Then salted and hashed again server side before being stored (or checked for login).

But if someone got that hashed version they could hack the client to have client side hashing code just send that hashed value to the server. You’d want to have the server to send a rotating token of some sort to use for encrypting the password on the client and then validate it on the server side that it was encrypted with the same token the server sent.

Seems complicated to me… https is probably has good enough encryption, so eh, whatever.

permalink

report

parent

[ - ]

Buddahriffic@lemmy.world

1 point

12 days ago

Yeah, if they are able to intercept traffic or access the logs, they probably already have other access to the account without needing the password. If you don’t reuse passwords, then your other accounts will be safe from that.

permalink

report

parent

Programmer Humor

!programmer_humor@programming.dev

Create post

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

Community stats

7K
Monthly active users
730
Posts
11K
Comments

Rules

Community stats

Community moderators