Larion Studios forum stores your passwords in unhashed plaintext. Don’t use a password there that you’ve used anywhere else.

  • @[email protected]
    link
    fedilink
    English
    01 year ago

    I’m just explaining how user authentication works for most web applications. The server will process your plaintext password when your account is created. It should then store that as a hashed string, but it can ALSO send out an email with that plaintext password to the user describing their account creation. This post does not identify that passwords are stored in plaintext, it just identifies that they email plaintext passwords which is poor security practice.

    • @Serinus
      link
      English
      11 year ago

      This particular poor security practice is very much like a roach. If you see one you have a bigger problem.

      See, I can also repeat myself as though you didn’t understand the first time.