Results 1 to 2 of 2

Thread: Question about Authorization

  1. #1

    Joined
    Jan 2012
    Posts
    8
    Thanks
    2
    Thanked
    3/3
    DL/UL
    13/0
    Mentioned
    10 times
    Time Online
    11h 56m
    Avg. Time Online
    N/A

    Question about Authorization

    How come when you login to the forum your password is hashed, but when you go to auth it, you don't have the password hashed?

    Isn't that a huge security risk?

  2. #2
    Saiyan Race
    j03's Avatar
    Joined
    Dec 2011
    Posts
    13,722
    Userbars
    166
    Thanks
    5,906
    Thanked
    33,078/6,609
    DL/UL
    23/36
    Mentioned
    3,867 times
    Time Online
    563d 5h 25m
    Avg. Time Online
    3h 13m
    The authentication uses the same procedure as a regular login, so yes it is hashed (but unlike the normal one where it is done client side, this one is sent to my server where a PHP script does it).

    Thanks for trying to lookout though.
    (you need an account to see links)
    (you need an account to see links)(you need an account to see links)

    ------------------------
    [02/24/2013] Stealth CORE is made into the first standalone Neopets auto-player.
    ------------------------


  3. The Following User Says Thank You to j03 For This Useful Post:

    Duck4Cover (06-16-2013)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •