707
You need to lie about everything
(thelemmy.club)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 09 Feb 2026
707 points (97.6% liked)
Comic Strips
22045 readers
2941 users here now
Comic Strips is a community for those who love comic stories.
The rules are simple:
- The post can be a single image, an image gallery, or a link to a specific comic hosted on another site (the author's website, for instance).
- The comic must be a complete story.
- If it is an external link, it must be to a specific story, not to the root of the site.
- You may post comics from others or your own.
- If you are posting a comic of your own, a maximum of one per week is allowed (I know, your comics are great, but this rule helps avoid spam).
- The comic can be in any language, but if it's not in English, OP must include an English translation in the post's 'body' field (note: you don't need to select a specific language when posting a comic).
- Politeness.
- AI-generated comics aren't allowed.
- Adult content is not allowed. This community aims to be fun for people of all ages.
Web of links
- !linuxmemes@lemmy.world: "I use Arch btw"
- !memes@lemmy.world: memes (you don't say!)
founded 2 years ago
MODERATORS
If you store it in your password manager alongside your password, what's even the point in having these questions?
In some places it is mandatory
... that's an excellent question.
Frankly, even if you don't... what's the point? if you can crack the password, you can probably crack the secret question. or questions.
if you can social engineer a password, same with secret questions.
They're basically just a second passwords. possibly one of many passwords with a prompt.
I'm not even sure how I would store the answers to these questions in a database. Would you hash them like passwords or just store them in plain text (maybe encrypt them, but if someone has access to your servers they can probably access the encryption key too)?
many passwords allow you to store pass keys (like with crypto wallets) as hashes attached to any login credentials. I would suggest storing them that way. at worst, I used to create secondary credentials.