• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Credentials in plain text

Jump to latest Follow Reply
Sort by date Sort by votes
A

aurora40

Android Enthusiast
May 20, 2012
376
62
Virginia
#1
After the password breach/notification banner, I started to look a bit closer at things. When logging into AF, it is not over SSL (I'm sure the reason for that is money). But more than that, it POSTs the password in plain text. I believe vBulletin allows for sending MD5-hashed credentials instead, it may just need a configuration change.

Granted this is still in plain text over the wire, but you are giving up more info with the unhashed password. Anyone with my password can also get the hash, and possibly can get other passwords/security questions/social-engineer more info about me. Anyone with the hash cannot reasonably get my password, they can only get access to AndroidForums as me.
 
  • Like
Reactions: EarlyMon
#2
aurora40 said:
After the password breach/notification banner, I started to look a bit closer at things. When logging into AF, it is not over SSL (I'm sure the reason for that is money). But more than that, it POSTs the password in plain text. I believe vBulletin allows for sending MD5-hashed credentials instead, it may just need a configuration change.

Granted this is still in plain text over the wire, but you are giving up more info with the unhashed password. Anyone with my password can also get the hash, and possibly can get other passwords/security questions/social-engineer more info about me. Anyone with the hash cannot reasonably get my password, they can only get access to AndroidForums as me.
Click to expand...


Thank you. We are working out a solution for this.
 
  • Like
Reactions: EarlyMon
Upvote 0
You must log in or register to reply here.

BEST TECH IN 2023

We've been tracking upcoming products and ranking the best tech since 2007. Thanks for trusting our opinion: we get rewarded through affiliate links that earn us a commission and we invite you to learn more about us.

Smartphones

Best Android Phones

See All
  1. Google Pixel 8 Pro Check Price
  2. Samsung Galaxy S23 Ultra Check Price
  3. Samsung Galaxy Z Fold5 Check Price
  4. Google Pixel 8 Check Price
  5. Samsung Galaxy S23 Check Price

Upcoming

See All
  1. Samsung Galaxy S24 Early Access

Best iPhones

See All
  1. Apple iPhone 15 Pro Max Check Price
  2. Apple iPhone 15 Pro Check Price
  3. Apple iPhone 15 Plus Check Price
  4. Apple iPhone 15 Check Price
  5. Apple iPhone SE (2022) Check Price

Upcoming

See All
  1. Apple iPhone 16 Early Access

Tablets

Best Tablets

See All
  1. Samsung Galaxy Tab S9 Ultra Check Price
  2. Apple iPad Pro (2022) Check Price
  3. Apple iPad Air (2022) Check Price
  4. Apple iPad Mini (2021) Check Price
  5. Microsoft Surface Pro 9 Check Price

Upcoming

See All
  1. Apple iPad Air 6 Early Access
  2. Apple iPad Fold Early Access

Laptops

Best Laptops

See All
  1. Apple Macbook Pro Check Price
  2. Apple Macbook Air (2023) Check Price
  3. Dell XPS 13 Check Price
  4. Acer Chromebook Spin 714 Check Price
  5. Dell Alienware m18 (2022) Check Price

Upcoming

See All
  1. Microsoft Surface Laptop 6 Early Access
  2. Microsoft Surface Pro 10 Early Access

Televisions

Best TVs

See All
  1. Samsung The Frame TV Check Price
  2. Samsung Neo QLED 4K QN90C Check Price
  3. LG G3 OLED Check Price
  4. LG A2 OLED Check Price
  5. ROKU Plus Series Check Price
  6. Samsung S90C OLED Check Price
  7. SunBriteTV Veranda 3 Check Price

Upcoming

See All
  1. Hisense 110UX ULED X TV Early Access

Game Consoles

Best Game Consoles

See All
  1. Nintendo Switch OLED Check Price
  2. Microsoft XBOX Series X Check Price
  3. Sony Playstation 5 Check Price
  4. Microsoft XBOX Series S Check Price
  5. Nintendo Switch Lite Check Price

Upcoming

See All
  1. Nintendo Switch 2 Early Access

Wearables

Best Wearables

See All
  1. Oura Ring 3 Check Price
  2. Apple Watch Series 9 Check Price
  3. Google Pixel Watch 2 Check Price
  4. Samsung Galaxy Watch 6 Classic Check Price
  5. Fitbit Inspire 3 Check Price
  6. Amazfit Amazfit Band 7 Check Price
  7. Apple Watch SE Check Price
  8. Apple Watch Ultra 2 Check Price

Upcoming

See All
  1. Samsung Galaxy Watch 7 Early Access

Smart Home

Smart Home Tech

See All
  1. Amazon Echo (4th Gen) Check Price
  2. Schlage Encode Smart Lock Check Price
  3. Amazon Blink Smart Cameras Check Price
  4. Google Nest Thermostat Check Price
  5. Phillips Hue Smart Lights Check Price

Upcoming

See All
  1. Apple Homepod Vision Early Access

Similar threads

Upvote 0
Samsung
  • Suggestion
Enter the New Era of Mobile AI With Samsung Galaxy S24 Series
Replies
0
Views
190
Breaking News
Samsung
Samsung
P
Help Hacked Google pixel 4xl
Replies
7
Views
4K
Ask a question
ocnbrze
ocnbrze
H
Best similar / closest to Samsung Galaxy Note 8 apps
Replies
2
Views
9K
Smartphones
nickdalzell
nickdalzell
W
Speech-to-text changed, is not as good now
Replies
6
Views
6K
Smartphones
WolfStock
W
D
[GUIDE] Disabling Intel ME - Dell Precision M4800
Replies
3
Views
15K
Laptops & Computers
K4sum1
K4sum1
Top Bottom
Back
Jump to latest Follow Reply
Jump to latest Follow Reply