Use it on your phone, duh :P
Jokes aside I wish windows supported pin+hardware key to log in… But alas that’s an enterprise only thing.
Use it on your phone, duh :P
Jokes aside I wish windows supported pin+hardware key to log in… But alas that’s an enterprise only thing.
For that particular website yes, but a salted client side hash is worthless on a different website.
Edit: plus even unsalted it would only work if the algorithm is the same and less iterations are done
It helps against the server being able to read the password, so a bad actor (either the website itself or after a hack) could read your password. Which isn’t bad if you’re using good password hygiene with random passwords, but that sadly is not the norm.
Why would you not hash in the browser. Doing so makes sure the plaintext password never even gets to the server while still providing the same security.
Edit: I seem to be getting downvoted… Bitwarden does exactly what I described above and I presume they know more than y’all in terms of security https://bitwarden.com/help/what-encryption-is-used/#pbkdf2
Train system is not exactly viable here compared to using a car (Belgium)
Edit: but yeah the rest is about right
Ikr, like I don’t need a full feature full stack framework… I just want my tech demo to not look like it was made in the 80s without spending hours. (I’m mostly a backend dev)
Small bits like caps can’t get sorted for recycling for some reason, so they’re just “waste” instead of recyclable
Interesting how the second “correct result” is years older
Writing kernels for parallel execution with OPENCL gives me flashbacks every time I remember them
Damn… That is good…
I guess we now have to learn all the different markers for AI generated music too (like hands and background continuity for image generation)
30? I’ve come across website that in this case would list out all 807 partners.
These days that’s still python
I tried picking up rust for the AoC, but any program I wrote ended up unreadable cuz of this unwrap_or. It just allows too much chaining. Then again other options for chaining operations aren’t much better, like match. Idk what I’m doing wrong or if rust never was meant to be readable.
Yeah ofc, if you already have a valid key doing everything you need you ofc have no need of it. If you would like BitLocker and remote desktop protocol (build in) like I do, you need a “pro” license.
Stealing from a big company like microsoft is still ethically justified imo.
For anyone wondering how one would go about upgrading your home install to pro, there’s MAS. It’s a simple script that will activate the windows version of your choosing, it can activate msoffice too.
I’d like to do the same, but atm I use nginx to serve all the web interfaces… And keycloak support is either a plus subscription feature or made to work with hacky Lua scripts.
So for now it’s security through obscurity, I got a wildcard cert and the pages are accessed based on subdomain. So afaik nobody has a clue unless they start iterating common subdomain names. (At some point™️ I’m adding proper auth though)