Original Post
Condings, it's quite possible. I did notice this a long time ago where, if you could get on somebody else's computer you could theoretically steal their password and their TC. I think though, if hacking did occur, the staff would refund everything. I'd be more worried if a credit card number was encrypted.
Buy me food and tell me I'm cute.
Originally Posted by Twilight
Condings, it's quite possible. I did notice this a long time ago where, if you could get on somebody else's computer you could theoretically steal their password and their TC. I think though, if hacking did occur, the staff would refund everything. I'd be more worried if a credit card number was encrypted.
If someone gets to your computer there is nothing we can do to stop it. We can't encrypt the password without it being visible for the client.
Going to Firefox / Preferences / Saved passwords would give the password as well if the users has been on the forum and saved the password there.
If you are only a public machine use /forgetme to remove the stored password.
Originally Posted by hampa
If someone gets to your computer there is nothing we can do to stop it. We can't encrypt the password without it being visible for the client.
Going to Firefox / Preferences / Saved passwords would give the password as well if the users has been on the forum and saved the password there.
If you are only a public machine use /forgetme to remove the stored password.
You know much more about this topic than I do but suppose the password could be encrypted locally on the computer where the client reads it and then sends it via an SSL connection to your servers. Encrypt it locally so that only the person that knows the password can actually view it by confirming their identity by typing it in.
Buy me food and tell me I'm cute.
