Password Breach Alerts
Posted 8 months ago by Sweets
Posted 8 months ago by Sweets
8 months ago
I've added new functionality to DarkModus regarding security (finally).
Now, when you login, your password is sent through the HaveIBeenPwned password API to show if there have been any breaches of your password. The image below is an example of such message.
![[Image: 68747470733a2f2f692e696d6775722e636f6d2f...682e706e67]]()
If you get this message, don't be alarmed. DarkModus has not been compromised, and even if we were, our passwords are hashed using a secure hashing algorithm. As a side note, your passwords are also not being sent in plain-text to HIBP. They're hashed, and only a fragment of the hash is sent to HIBP, and we compare the list of hashes HIBP responds with to your hash to see if your password has been compromised.
As a side note, you can also enable two-factor authentication for extra security on DarkModus, which can be done by going to the security settings from the user control panel.
That's all for now, have a great day.
Now, when you login, your password is sent through the HaveIBeenPwned password API to show if there have been any breaches of your password. The image below is an example of such message.
If you get this message, don't be alarmed. DarkModus has not been compromised, and even if we were, our passwords are hashed using a secure hashing algorithm. As a side note, your passwords are also not being sent in plain-text to HIBP. They're hashed, and only a fragment of the hash is sent to HIBP, and we compare the list of hashes HIBP responds with to your hash to see if your password has been compromised.
As a side note, you can also enable two-factor authentication for extra security on DarkModus, which can be done by going to the security settings from the user control panel.
That's all for now, have a great day.
Users browsing this thread: 1 Guest(s)
© MMXIX
