deleted by creator
deleted by creator
This isn’t far from reality. Spez has his head so far up Elon’s arse he’s wearing his face.
Well it’s a good thing your opinion has no effect on reality.
You encrypt the datastream from the text input on the client side before storing it in a variable. It’s not rocket science. I did this shit 20 years ago. Letting a plaintext password leave the user client is fucking stupid.
If self awareness was a disease you’d be the healthiest person alive.
Sure, if you’re illiterate.
Lmao
It’s a good thing your opinion makes no difference then isn’t it.
I haven’t looked into it but I was wondering about the logistics of setting up a federated honeypot for server side stream sniffing to build a plaintext email/password database.
Yes. I agree 100% with the things I can and I defer to your experience where I can’t. I used to write proprietary networking protocols 20 years ago and that’s the knowledge and experience I’m leaning on.
As a matter of practice we would ensure to process passwords by encrypting the datasteam directly from the input, and they were never unencrypted in handling, so as to protect against various system and browser vulnerabilities. It would be a big deal to have them accessible in plaintext beyond the user client, not to mention accessible and processable by email generation methods and insecure email protocols.
Imagining thinking what’s popular is best. Betamax, HD DVD, Firewire, Ogg Vorbis, PNG, Firefox, Linux, Lemmy and friends, would all like a chat.
It’s been hard to tell because reddit isn’t releasing user retention statistics that are easy to find for other social media sites (minutes per user per day), also due to vote obfuscation it can be difficult to know from vote counts because they could just manipulate the bias.
There’s also a lot of established communities around media/internet personalities that are largely unaffected by the changes and unlikely to move without significant fan pressure.
But people go where the content is, last time I checked the top 5 posts on Reddit were under 30k votes and were all tiktoks. That tells me that the content creators and the progressive adaptors have all moved on already, the rest is attrition over time as the service and content continues to stagnate.
The one thing reddit has propping it up artificially is it’s remaining position as a valuable information resource particularly for niche topics and especially while the fediverse doesn’t get boosted in seo yet.
Yes, which is why they’re vulnerable to mitm and local sniffer attacks.
25, I used to write proprietary networking protocols.
The front end to backend traffic should be encrypted, hashing occurs on the backend. The backend should never have access to a variable with a plaintext password.
I’m going to have to stop replying because I don’t have the time to run every individual through infosec 101.
You have the text input feed directly into the encryption layer without an intermediary variable. The plaintext data should never be passable to an accessible variable which it must be to send the plaintext password in the email because it’s not an asynchronous process.
I’m surprised so many people are getting hung up on basic infosec.
Stored in memory is still stored. It’s still unencrypted during data processing. Still bad practice and a security vulnerability at best. Email isn’t E2E encrypted.
Poes law. This isn’t Internet 101. Catch up.
That’s like saying Digg isn’t dead because the website is still there. But what was once the front page of the Internet is a forgotten footnote that now stands as a bot content farm. Reddit will go the same way.
Pfft. Not even going to be the hottest this year.
Hottest Summer 2: Australian Boogaloo