Comment on Larion Studios forum stores your passwords in unhashed plaintext.
fireflash38@lemmy.world 1 year agoThere are ways to have passwords transmitted completely encrypted, but it involves hitting the backend for a challenge, then using that challenge to encrypt the password client side before sending. It still gets decrypted on the backend tho before hash and store.
poopsmith@lemmy.world 1 year ago
Yeah, but SSL/TLS also solves that problem in a standardized way.
In either case, the backend will have the plaintext password regardless of how it’s transmitted.