cross-posted from: https://lemmy.world/post/12516311

Or maybe introduce them to Little Bobby Tables

(skeletor is leading by example by adding that unnecessary apostrophe…)

  • slazer2au@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    8 months ago

    Too small scale. Set your password as an eicar test string.

    This way if your password is decrypted or stored as clear text the host AV will block the file.

  • cron@feddit.de
    link
    fedilink
    arrow-up
    2
    ·
    8 months ago

    And add some non-ASCII characters. If the commas did not kill their database, adding unicode will.

    • lad@programming.dev
      link
      fedilink
      arrow-up
      1
      ·
      8 months ago

      I once had problems unpacking an archive I definitely knew the password for. Turns out, zip made on an Android phone had non ASCII letters in the password in some other encoding than the one PC used

  • Dave@lemmy.nz
    link
    fedilink
    arrow-up
    1
    ·
    8 months ago

    I’d hope places aren’t storing your password in plain text. Though I guess I wouldn’t be super surprised if some were.

    • Zikeji@programming.dev
      link
      fedilink
      English
      arrow-up
      2
      ·
      8 months ago

      One of my first projects I took over stored hashed passwords, but only unsalted MD5s, in the process of upgrading the hashing algorithm I discovered the plaintext passwords were logged on any sign in, sign up, or password change…