519

Simple security test(programming.dev)

posted
by
Avatar
irelephant [he/him]@programming.devM
in
Avatar
iiiiiiitttttttttttt@programming.dev
28 comments
hidereport
Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments
Avatar
rothaine@lemm.ee
26 points

Tangential rant: how did we get to a world in which shit like Plaid and Teller exist?

The first rule of security is don’t tell people your password.

The second rule of security club is DON’T FUCKING TELL PEOPLE YOUR PASSWORD.

“We need to link your bank account”

Ok

“Put your password to your bank account in this little JavaScript widget”

Bro??? What? To my fucking bank account? Arguably the most important password I have?

“We promise we won’t log it”

Oh, well ok then, as long as you pinky promise, I guess

How is this considered NORMAL?!

And now there’s some sites that won’t even let you do the “old way” of making tiny deposits! They demand that you use Plaid!

AAAAHHH CRAZY PILLS

permalink
report
reply
Avatar
SirQuack@feddit.nl
10 points

Again, SEPA zones winning with PSD2 banking connections, which natively connect to your bank, and hands over an access token.

It’s effectively oauth with a bank API and some strict requirements such as mTLS on the api calls.

permalink
report
parent
reply

iiiiiiitttttttttttt

!iiiiiiitttttttttttt@programming.dev

Create post

you know the computer thing is it plugged in?

A community for memes and posts about tech and IT related rage.

Community stats

  • 4.1K

    Monthly active users

  • 32

    Posts

  • 871

    Comments

Community moderators