this post was submitted on 10 Jul 2023
63 points (100.0% liked)

Fediverse

19 readers
2 users here now

This magazine is dedicated to discussions on the federated social networking ecosystem, which includes decentralized and open-source social media platforms. Whether you are a user, developer, or simply interested in the concept of decentralized social media, this is the place for you. Here you can share your knowledge, ask questions, and engage in discussions on topics such as the benefits and challenges of decentralized social media, new and existing federated platforms, and more. From the latest developments and trends to ethical considerations and the future of federated social media, this category covers a wide range of topics related to the Fediverse.

founded 2 years ago
 

Went there and got some… less than savory images. Do not recommend going there.

Did it get hacked or smth?

you are viewing a single comment's thread
view the rest of the comments
[–] elscallr@kbin.social 5 points 1 year ago (1 children)

Yeah anyone not using randomly generated passwords at this point is just fucking up. I know exactly three of my passwords: the one for my email, the one for my password manager, and the one I'm likely to give out (streaming services and such). The worst anyone can do with the third is cancel my Disney+ or something, and it's really only given to my mom and sisters.

[–] curiosityLynx@kglitch.social 0 points 1 year ago (1 children)

Is salting password hashes so unknown that neither the lemmy devs nor the kbin dev(s?) have implemented it?

[–] elscallr@kbin.social 2 points 1 year ago* (last edited 1 year ago)

Well this was a JWT compromise, I think, but even still people use really bad passwords all the time. A salt is stored with the user record. The salt's job is to invalidate rainbow tables. If you have a collection of a million bad passwords you can check them all salted in a second or two. Obviously that'll depend on the hashing algorithm to an extent.