Y
Hacker News
new
|
ask
|
show
|
jobs
by
vacri
4827 days ago
How is that even possible? What could be the possible rationale for keeping old passwords stored? Crazy.
2 comments
archivator
4827 days ago
You're assuming it's intentional. The first thing that comes to my mind is inconsistent state between multiple authentication servers.
link
larrik
4827 days ago
Normally it would to be prevent users from reusing their most recent N passwords, for security. I don't believe Apple does that anywhere, though.
link
vacri
4826 days ago
I suppose thinking about it, as long as they're hashed and salted, it's less of a problem... but it's still crazy that the system could fail that way.
link
erichocean
4827 days ago
I can confirm that they do.
link