Y
Hacker News
new
|
ask
|
show
|
jobs
by
kyberias
2886 days ago
You rely on hashids to be secure, so that your jerk end-users can't increment the id. You would like to know how secure it actually is, don't you?
2 comments
ngrilly
2886 days ago
This is exactly what I'm wondering. If an attacker finds a way to reverse the hashids, then he can increment the ID and scan the resources.
link
kimdotcom
2886 days ago
No.
If they can figure that out, I will have bigger problems with the users.
link
kpcyrd
2886 days ago
So apparently you have bigger problems with the users now.
link