W3C home > Mailing lists > Public > whatwg@whatwg.org > June 2011

[whatwg] Hashing Passwords Client-side

From: Nils Dagsson Moskopp <nils@dieweltistgarnichtso.net>
Date: Mon, 20 Jun 2011 20:15:14 +0200
Message-ID: <20110620201514.2e35c8e0@desudesudesu>
James Graham <jgraham at opera.com> schrieb am Mon, 20 Jun 2011 10:40:20
+0200:

> [?] and the authors who are most likely to get the server-side
> wrong are the same ones who are already storing passwords in plain
> text.

What reasoning is behind the assertion that those authors will use the
provided client-side hashing facilities correctly, then?

-- 
Nils Dagsson Moskopp // erlehmann
<http://dieweltistgarnichtso.net>
Received on Monday, 20 June 2011 11:15:14 UTC

This archive was generated by hypermail 2.3.1 : Monday, 13 April 2015 23:09:06 UTC