FOSS gamedev and creative worlds
This is a mostly frozen copy of the Minetest forums through 2017. If you know phpBB3 and would like to host any G-rated forum here, you can email: me@minetest.org If the email doesn't work, find out who's taken over Final Minetest from OldCoder and email them to get write access or an admin account.
I should have set this up years ago. But it's no tale of woe.
Whether the temperature is high or low, regardless of cold winds blow,
away we go like Edgar Allan Poe, on now with the show. BTW rhymes are welcome.
Question about making a password
6 posts
• Page 1 of 1
- Piqutchi
- New member
- Posts: 1
- Joined: Fri Mar 15, 2013 16:57
Question about making a password
When I enter a password, is it kept private, or is it publicly shown? I am somewhat paranoid about people possibly discovering the password I use, so I want to ask first.
-
rubenwardy - Member
- Posts: 4500
- Joined: Tue Jun 12, 2012 18:11
- GitHub:
rubenwardy
- IRC: rubenwardy
- In-game: rubenwardy
Piqutchi wrote:When I enter a password, is it kept private, or is it publicly shown? I am somewhat paranoid about people possibly discovering the password I use, so I want to ask first.
It is private, and it is hashed.
Hashing is when it takes you password, and leaves a fingerprint from it.
You can not get an original password from a hash, but you can get a hash from a password.
Like my stuff? Tip me a coffee | My Twitter
Mods: Awards - 15 more
Tools: Node Box Editor Mt Mods 4 Android
online book teaching how to mod
Mods: Awards - 15 more
Tools: Node Box Editor Mt Mods 4 Android
online book teaching how to mod
- prestidigitator
- Member
- Posts: 632
- Joined: Thu Feb 21, 2013 23:54
It's always a good idea not to reuse passwords for different types of account though. I'd advise strongly against using any password for Minetest that you also use for such things as online banking, an e-mail account, or your PC login.
- rarkenin
- Member
- Posts: 668
- Joined: Tue Nov 20, 2012 20:48
rubenwardy wrote:Piqutchi wrote:When I enter a password, is it kept private, or is it publicly shown? I am somewhat paranoid about people possibly discovering the password I use, so I want to ask first.
It is private, and it is hashed.
Hashing is when it takes you password, and leaves a fingerprint from it.
You can not get an original password from a hash, but you can get a hash from a password.
Modern hash crackers, with knowledge of your username, can break that hash by brute-force, if your password is not long enough. A 6-length password takes but a few days.
Admin pro tempore on 0gb.us:30000. Ask me if you have a problem, or just want help.
This is a signature virus. Add me to your signature so that I can multiply.
Now working on my own clone, Mosstest.
I guess I'm back for some time.
This is a signature virus. Add me to your signature so that I can multiply.
Now working on my own clone, Mosstest.
I guess I'm back for some time.
-
Likwid H-Craft - Member
- Posts: 1113
- Joined: Sun Jan 06, 2013 14:20
:p my password is a, thing I only know :)
Edit:It 79 Characters Long.
But Do anyone know why password max characters is 255?
Edit:It 79 Characters Long.
But Do anyone know why password max characters is 255?
Last edited by Likwid H-Craft on Sat Mar 16, 2013 13:10, edited 1 time in total.
My Domain's/others:
http://likwidtest.hj.cx/ (Not Done)
http://likwidtest.hj.cx/ (Not Done)
- prestidigitator
- Member
- Posts: 632
- Joined: Thu Feb 21, 2013 23:54
Likwid H-Craft wrote::p my password is a, thing I only know :)
Edit:It 79 Characters Long.
But Do anyone know why password max characters is 255?
Just an implementation limit. Since the passwords are hashed, generally there doesn't need to be a maximum limit, but remember that the password does have to be transmitted to the authentication system and does need to be processed by it. Often text fields in UIs have a limited length, or you're only using input buffers of a certain length, or you want to prevent people from attacking the authentication system by sending a bunch of really long password strings to process.
So usually you pick some reasonable limit for them. I doubt many people are going to use passwords that exceed 255 characters, so that seems reasonable. The 8 or 12 or 16 characters some systems choose for maximum password length are definitely NOT reasonable though, so when I run into one of those I find it extremely annoying. I find it even more annoying when it's some online site that processes confidential data or does financial transactions that imposes such a paltry and ridiculous maximum character limit.
6 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 10 guests