Memes

45187 readers

1429 users here now

Rules:

Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago

MODERATORS

[email protected]

1298

Add-on: same password, same identity. (lemmy.world)

submitted 10 months ago by [email protected] to c/[email protected]

177 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 37 points 10 months ago (3 children)

Imagine a site telling you "Sorry, you can't use asdf123 as your password: you've already used it on that other site".

[–] [email protected] 7 points 10 months ago (1 children)

That's not as far fetched as it sounds. Any website worth its salt will store your password as a hash, so if they started sharing the hashes with each other they could prevent you from reusing passwords without changing much security-wise

[–] [email protected] 10 points 10 months ago

Any website worth its salt will salt the hash as well...

[–] [email protected] 6 points 10 months ago

It would be better if you had a local tool telling you that - one that you control and only exists on your personal devices, kind of like secure messaging platforms such as Signal.

Another great later would be for all compromised passwords found in breaches to never be usable anywhere ever again, thus helping to thwart the most common form of breach we see today: credential stuffing.

[–] [email protected] 2 points 10 months ago (1 children)

Sorry you can't use *******

That wouldn't help that much

[–] [email protected] 2 points 10 months ago (1 children)

This was supposed to be a joke; of course it wouldn't.

[–] [email protected] 2 points 10 months ago* (last edited 10 months ago)

It's a pretty old meme, hunter11, but it checks out.