On Donnerstag, 24. Januar 2019 19:07:09 CET Philipp Hörist wrote: > Hm yes you are right, never thought that through as it seems. > > But does it really help not saving the pass on the client, what do i save > instead? the challenge i send? if this is aquired by an attacker he can > still access my account.
But not any other account where you used the same password, as the salt is (hopefully) unique. kind regards, Jonas
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: [email protected] _______________________________________________
