This is more of a meta forum question, and why do you care? |
|
I'm assuming that whoever runs this site has access to the passwords of all the users. Which made me start thinking. |
|
This is more of a meta forum question, and why do you care? |
|
passwords are hashed using a one way algorithm, and stored in a database |
|
(\_ _/)
(='.'=)
(")_(")
It depends on the forum structure though. |
|
---------
Lost count of how many lucid dreams I've had
---------
To my knowledge, a unique random salt is assigned to each member. |
|
You merely have to change your point of view slightly, and then that glass will sparkle when it reflects the light.
(\_ _/)
(='.'=)
(")_(")
Do you think this site warrants spending on SSL encryption? |
|
You merely have to change your point of view slightly, and then that glass will sparkle when it reflects the light.
You don't need to buy a certificate from verisign or others, |
|
(\_ _/)
(='.'=)
(")_(")
This is Dreamviews, not the CIA's public chat forum. |
|
Oh, agreed |
|
(\_ _/)
(='.'=)
(")_(")
It's done on the server side, if you use a sniffer you can clearly see your password go through in the header file. That's how almost everything works. Secure sites work differently, but DV is no a secure site since there is no dangerous information being passed around. |
|
Thanks for the info guys. Let me just iterate that I am in no way worried about he admins of dreamviews. I just figured it was a good example since I was posting on here |
|
In either case, if our passwords are stolen, we know who to look at for answers. |
|
Can you see me now?
The same could go for all forums/websites with passwords. What's new? |
|
For DV: I remember being able to see and reset member's passwords, but that field has mysteriously disappeared from the mod panel. I assume it's because it's now encrypted. |
|
|
|
Bookmarks