Or maybe introduce them to Little Bobby Tables - eviltoast

(skeletor is leading by example by adding that unnecessary apostrophe…)

  • dan@upvote.au
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    9 months ago

    Even if it’s hashed, some systems still use unsalted MD5 which is effectively just as bad as plain text.

    I don’t understand it. Argon2id has been around for nearly 10 years at this point, scrypt for 15, PBKDF2 for 20 and bcrypt for 25. It’s not hard.