Hacker News new | ask | show | jobs
by meowface 4345 days ago
Not to mention it's always been easy to implement even when it wasn't bundled by default.

There is utterly no excuse for storing passwords with anything that's not PBKDF2, bcrypt, or scrypt starting in 2009.
1 comments
TD-Linux 4345 days ago
Right, they switched over to Persona, which is far better. Unfortunately the old hashes were still left in the DB.
link
jeffbryner 4345 days ago
To be clear, the only old hashes were those from folks who haven't used persona to log in.
link