Y
Hacker News
new
|
ask
|
show
|
jobs
by
8n4vidtmkvmk
1299 days ago
that doesn't explain anything. they shouldn't be uploading unsalted hashes either. and if it's salted, it won't match with any database
2 comments
wizofaus
1299 days ago
True, the best solution is to download the list of hashed "bad passwords" and check if the one entered matches against that.
link
neevans
1299 days ago
if salted hash is leaked then it doesn't matter and does not need to be detected anyway.
link