Admin Attention Insecure login

The Network

The Network

Bluelighter
Joined
Nov 7, 2010
Messages
1,970
I got a notification from my browser today when I was coming to check on things saying the login is insecure. Opera only does this to very insecure websites that store passwords as plain text in my experience. Any chance of that being fixed? Or was Opera somehow wrong?
 
The Network said:
I got a notification from my browser today when I was coming to check on things saying the login is insecure. Opera only does this to very insecure websites that store passwords as plain text in my experience. Any chance of that being fixed? Or was Opera somehow wrong?
Click to expand...
the issue is not that passwords are stored as plain text (they are stored as an md5 hash of an md5 hash of the password combined with a random character string).

however, if you access the site over http your password will be transferred between your browser and our server as plain text. we are working out some kinks with serving the site over https - and frankly it's been taking forever - but it's in process.

alasdair
 
alasdairm said:
the issue is not that passwords are stored as plain text (they are stored as an md5 hash of an md5 hash of the password combined with a random character string).

however, if you access the site over http your password will be transferred between your browser and our server as plain text. we are working out some kinks with serving the site over https - and frankly it's been taking forever - but it's in process.

alasdair
Click to expand...

Thanks! I just like to see how dedicated forums I use are to trying to keep user accounts secure and everything. Looks like you're doing your best.
 
You must log in or register to reply here.
Top