Learn More
Resend Email
37
Shylor
8y

Customer: I keep getting your newsletter with my password in it.

Me: What?

I look through the accounts. The customer had set their name as their password... a year ago.

undefined
Favorite
Ranter
Comments
  • 0
    8y
    #SuperFail
  • 11
    8y
    And how do you know exactly, that username was in place of password? no hashing??
  • 1
    8y
    @tatocaster that was my question. My job here is done!
  • 0
    8y
    I expect the password was fairly odd and the user accidentally entered it into the user field as well. Potentially no password confirmation or something.
  • 1
    8y
    @tatocaster Maybe he hashed the name and the result was the same string as hashed password.
  • 1
    8y
    @tatocaster the customer put their password into the name field. So the newsletter said hello and then their password. Also I was the one that brought advanced password hashing into the company.
  • 1
    8y
    Also the newsletter system only allows name and email address. The password should have never been there.
  • 0
    8y
    @Shylor Clear!
devRant © 2021 Hexical Labs LLC
Privacy Policy  |  Terms of Service
Add Comment