1. Home
2. Questions
3. Unanswered
4. AI Assist Labs
5. Tags
7. Chat
8. Users
10. Companies
Teams

Ask questions, find answers and collaborate at work with Stack Overflow for Teams.
Try Teams for free Explore Teams
Teams
Ask questions, find answers and collaborate at work with Stack Overflow for Teams. Explore Teams

Return to Answer

added 83 characters in body

Source Link

edited Jul 10, 2023 at 13:11

831
4
10

No, password hashing is not bad. It is a better way to protect user privacy.

Big corporations tried to impose single sign on for a long time. It started at the end of the '90s with Microsoft Passport which at the time failed, but was rebranded several times. Centralised sign on is an effective way to track user activity. Note that it is not necessary for the sign on provider to know what the user is doing after login. A list of all the services used by each user is already enough to provide useful metadata. A lot of big data analysis currently is done using only metadata because using detailed data often leads to exponential complexity. However metadata already provides a lot of useful information.

Some users may not care about their privacy, but already a lot of internet sites offer the choice to login via a centralised ID provider or not. The users who choose to use a local account are those who care more for their privacy. Forcing them to provide their private details to a centralised ID provider is a bad idea.

The:

Password hashing is bad.

rules you posted are malicious. Sending the password to a local of a centralised server from a security point of view changes nothing. Beyond that the siplesimple concept of hashing is the safest way to handel the passwords.

BTW The source document you posted does not match the content of the question.

No, password hashing is not bad. It is a better way to protect user privacy.

Big corporations tried to impose single sign on for a long time. It started at the end of the '90s with Microsoft Passport which at the time failed, but was rebranded several times. Centralised sign on is an effective way to track user activity. Note that it is not necessary for the sign on provider to know what the user is doing after login. A list of all the services used by each user is already enough to provide useful metadata. A lot of big data analysis currently is done using only metadata because using detailed data often leads to exponential complexity. However metadata already provides a lot of useful information.

Some users may not care about their privacy, but already a lot of internet sites offer the choice to login via a centralised ID provider or not. The users who choose to use a local account are those who care more for their privacy. Forcing them to provide their private details to a centralised ID provider is a bad idea.

The:

Password hashing is bad.

rules you posted are malicious. Sending the password to a local of a centralised server from a security point of view changes nothing. Beyond that the siple concept of hashing is the safest way to handel the passwords.

No, password hashing is not bad. It is a better way to protect user privacy.

Big corporations tried to impose single sign on for a long time. It started at the end of the '90s with Microsoft Passport which at the time failed, but was rebranded several times. Centralised sign on is an effective way to track user activity. Note that it is not necessary for the sign on provider to know what the user is doing after login. A list of all the services used by each user is already enough to provide useful metadata. A lot of big data analysis currently is done using only metadata because using detailed data often leads to exponential complexity. However metadata already provides a lot of useful information.

Some users may not care about their privacy, but already a lot of internet sites offer the choice to login via a centralised ID provider or not. The users who choose to use a local account are those who care more for their privacy. Forcing them to provide their private details to a centralised ID provider is a bad idea.

The:

Password hashing is bad.

rules you posted are malicious. Sending the password to a local of a centralised server from a security point of view changes nothing. Beyond that the simple concept of hashing is the safest way to handel the passwords.

BTW The source document you posted does not match the content of the question.

Source Link

answered Jul 10, 2023 at 11:32

831
4
10

No, password hashing is not bad. It is a better way to protect user privacy.

Big corporations tried to impose single sign on for a long time. It started at the end of the '90s with Microsoft Passport which at the time failed, but was rebranded several times. Centralised sign on is an effective way to track user activity. Note that it is not necessary for the sign on provider to know what the user is doing after login. A list of all the services used by each user is already enough to provide useful metadata. A lot of big data analysis currently is done using only metadata because using detailed data often leads to exponential complexity. However metadata already provides a lot of useful information.

Some users may not care about their privacy, but already a lot of internet sites offer the choice to login via a centralised ID provider or not. The users who choose to use a local account are those who care more for their privacy. Forcing them to provide their private details to a centralised ID provider is a bad idea.

The:

Password hashing is bad.

rules you posted are malicious. Sending the password to a local of a centralised server from a security point of view changes nothing. Beyond that the siple concept of hashing is the safest way to handel the passwords.