General discussion

  • Creator
    Topic
  • #2170133

    danger in double use of passwords

    Locked

    by john.a.wills ·

    Tags: 

    Most reputable password-protected installations, including the network of PCs on which I log in every day to work, shuffle the password for storage, and shuffle input passwords to compare with the stored shuffled password. Someone who forgets his password gets issued with a new one – which, normally, has to be changed on first use.

    Today I came to a website I had not logged on to for months. I had forgotten my password, so I asked for an updating email. I got one very quickly: it showed the same password I had been using for my local network. Obviously I had used the same password twice (some I use in more than 2 places, though usually with slight variants…), assuming the usual shuffling practice; equally obviously this site (evisions, for those who want to know) stores passwords in clear. That does not mean they are visible to all the world, but it reduces confidence.

    What other installations store passwords in clear?

    I have, of course, changed my network password.

All Comments

  • Author
    Replies
    • #3041961
      Avatar photo

      That is interesting…

      by Tammy.Cavadias ·

      In reply to danger in double use of passwords

      Hadn’t realized Google Chrome does that… does make you wonder just how many out there do this, which leads to less confidence from the part of the user.

    • #3041813

      Double use of password

      by simply_michael ·

      In reply to danger in double use of passwords

      Yes you are right, it means at this point of website the security concern is low. we should aware of that thank you.

    • #3041789

      0 VOTES danger in double use of passwords

      by peter445 ·

      In reply to danger in double use of passwords

      I have begun using 2 factor authorization on my Google account. I feel safer now but of course it’s a bit of frustration if phone is not in the pocket.

Viewing 2 reply threads