Y
Hacker News
new
|
ask
|
show
|
jobs
by
teovall
4992 days ago
The phrase "stored in plain text" does not mean anything near the same thing as "encrypted with AES in the Windows Vault using the Data Protection API". This story is complete hogwash.
1 comments
IanDrake
4992 days ago
I'm thinking the same thing. These aren't website passwords, they need to be recoverable by an administrator. I'm sure this is by design.
link
viraptor
4992 days ago
Why do you think they should be recoverable by anyone? You can verify your details against a hash, or reset them anyway.
link