Larion Studios forum stores your passwords in unhashed plaintext. Don’t use a password there that you’ve used anywhere else.

  • inclementimmigrant@lemmy.world
    link
    fedilink
    English
    arrow-up
    44
    arrow-down
    12
    ·
    edit-2
    1 year ago

    While sending your password in plaintext over email is very much a bad idea and a very bad practice, it doesn’t mean they store your password in their database as plaintext.

      • Michal@programming.dev
        link
        fedilink
        English
        arrow-up
        10
        arrow-down
        2
        ·
        1 year ago

        Just because they send out the password does not mean it’s not hashed. They could send the email before hashing.

        • JackbyDev@programming.dev
          link
          fedilink
          English
          arrow-up
          5
          ·
          1 year ago

          You’re correct and after reading more of the thread I saw OP say this was sent immediately after registering. I don’t have reason to believe it is stirred in plaintext unless they’re storing s copy of every email they send.

    • Serdan@lemm.ee
      link
      fedilink
      English
      arrow-up
      12
      arrow-down
      14
      ·
      1 year ago

      Passwords shouldn’t be stored at all though 🤷‍♂️

      • Vlixz@lemmy.world
        link
        fedilink
        English
        arrow-up
        13
        arrow-down
        1
        ·
        1 year ago

        You mean plaintext passwords right? Ofcourse then need to store your (hashed)password!

        • TheFogan@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          Point is, a hash isn’t a password. giving the most you don’t need tech knowledge analogy, it’s like the passwords fingerprint.

          The police station may keep your daughters fingerprint so that if they find a lost child they can recognize it is your daughter beyond any doubt. Your daughters fingerprints, is like a hash, your daughter is a password.

          The police should not store your daughter… that’s bad practice. The fingerprints are all they should store, and needless to say the fingerprints aren’t your daughter, just as a hash isn’t a password.