I mean server-side (can we check the source for that?). The server could crack t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		paulhodge on June 6, 2012 \| parent \| context \| favorite \| on: LeakedIn I mean server-side (can we check the source for that?). The server could crack the hash, and the server could use various pieces of data (ip address, http headers, etc) to try to figure out more about the password's owner.

jperras on June 6, 2012 [–]

True, that's completely possible. However, if this concerns you then you should probably not sign up for any account on any site, since they could be doing the very same thing with your actual password.

anthonyb on June 6, 2012 | [–]

Which is why you use different passwords on different sites.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact