Outer Web | Explore

Explore >> Select a destination

You are here		greg.molnar.io Validating password strength \| Greg Molnar
\|	\|	ankane.org Securing User Emails in Rails with Lockbox	4.7 parsecs away Travel
\|	\|	This is an update to Securing User Emails in Rails with a number of improvements: Works with Devise's email changed notifications Works with...	4.7 parsecs away Travel
\|	\|	dusted.codes SHA-256 is not a secure password hashing algorithm	5.4 parsecs away Travel
\|	\|	SHA-256 is not a secure password hashing algorithm	5.4 parsecs away Travel
\|	\|	myers.io Why You Shouldnt Hash on the Client - myers.io	5.2 parsecs away Travel
\|	\|	Every so often I see posts on Stack Exchange, or Hacker News where someone has figured out that their passwords are being sent to the server and the server can see them! The logic that we see is that if the password is hashed client side, then only the hash needs to be sent to the server, so the server never knows the password. Unfortunately, I sometimes even see this go one step further when people suggest that with this arrangement, HTTPS isnt required. Wrong.	5.2 parsecs away Travel
\|	\|	fossa.com Open Source Software Licenses 101: GPL v2 - FOSSA	28.0 parsecs away Travel
\|		See what the popular copyleft open source software license GPL v2 requires, allows, and prohibits of users.	28.0 parsecs away Travel