(skeletor is leading by example by adding that unnecessary apostrophe…)

    • GiveOver@feddit.uk
      link
      fedilink
      arrow-up
      0
      ·
      9 months ago

      If you’re a company, you should save your users’ passwords as “hashes” which is like a scrambled up version, so if your data gets stolen the hackers will have to unscramble all the passwords which takes a long time. Some naughty companies don’t do this and save their passwords as plain text. The person above is presumably talking to developers to remind them not to be naughty

      • Agent641@lemmy.world
        link
        fedilink
        arrow-up
        0
        ·
        9 months ago

        For the benefit of the person above you, thats not to say that hashed passwords are unbreakable, because hackers can build a thing called a rainbow rmtable where they hash a bunch of known passwords, words, and phrases, and then can compare their rainbow table agains a stolen hash to learn what the starting value might have been. Thats why a complex password is very useful