Timeline for Why aren't passwords also hashed on client side on desktop applications?
Current License: CC BY-SA 4.0
2 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Mar 24 at 8:15 | comment | added | Ja1024 | The OP asked the question for a case where the client is a desktop application, not a browser (see the last paragraph). So a compromised or malicious server cannot simply disable the hashing. | |
| Mar 24 at 8:09 | history | answered | Sjoerd | CC BY-SA 4.0 |