| Blockland Forums > General Discussion |
| blocklandsaves.com |
| << < (41/74) > >> |
| Subpixel:
--- Quote from: Kalphiter^4 on December 05, 2013, 04:08:09 PM ---I'm concerned because he could easily have access to passwords of everyone. --- End quote --- How am I supposed to send data in plaintext? The site is built around Php. That isn't really possible. |
| Kalphiter^4:
--- Quote from: Subpixel on December 05, 2013, 06:29:57 PM ---How am I supposed to send data in plaintext? The site is built around Php. That isn't really possible. --- End quote --- --- Quote ---POST /index.php HTTP/1.1 Host: saves.zapkraft.net User-Agent: -snip- Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Referer: http://saves.zapkraft.net/index.php Cookie: PHPSESSID=-snip- Connection: keep-alive Content-Type: application/x-www-form-urlencoded Content-Length: 48 process=1&user=adfsfadsadf&pass=THCIAMYPASSWORD HTTP/1.1 200 OK Server: nginx Date: Thu, 05 Dec 2013 23:32:08 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.3.27 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip --- End quote --- There it is. Whatever password I send is sent to your server. That is not OK. |
| Unvanquished:
Yay Kalphiter starting another stuffstorm argument over something as pointless as this. Seriously Kalph, if people are worried about using their personal passwords they won't. Stop throwing a bitch fit over it. |
| Kalphiter^4:
--- Quote from: Unvanquished on December 05, 2013, 06:34:26 PM ---Seriously Kalph, if people are worried about using their personal passwords they won't. Stop throwing a bitch fit over it. --- End quote --- Some people will always use global passwords. Zapk shouldn't be able to read them, ever. --- Quote from: Unvanquished on December 05, 2013, 06:34:26 PM ---Yay Kalphiter starting another stuffstorm argument over something as pointless as this. --- End quote --- Protecting users... what a pointless thing. |
| Subpixel:
--- Quote from: Kalphiter^4 on December 05, 2013, 06:33:45 PM ---There it is. Whatever password I send is sent to your server. That is not OK. --- End quote --- Typo. I meant how am I supposed to hash them before sending them? |
| Navigation |
| Message Index |
| Next page |
| Previous page |