this post was submitted on 26 May 2025

565 points (96.2% liked)

Cybersecurity - Memes

2824 readers

1 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago

MODERATORS

Sam1232188@lemmy.world

neurohost@lemmy.world

Sam1232188@lemmy.fmhy.ml

Alphadef@programming.dev

CannaVet@lemmy.world

565

Uh oh, somebody's not following best practices, that's a paddlin (lemmy.world)

submitted 2 weeks ago by cm0002@lemmy.world to c/cybersecuritymemes@lemmy.world

103 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Serinus@lemmy.world 4 points 2 weeks ago

but they don't want to come out and tell you about it.

It also doesn't require a code change to continue blaming the user when you invalidate all current passwords.

It's a couple database queries to move all current passwords to old passwords, and change current (hashed) password for everyone to "deadbeef". Nobody can guess a value that adds to their salt and hashes to "deadbeef", and you get this behavior.