43
edits
(Created page with " = What is this? = Plain Stupid is a campaign to ensure all your XMPP passwords are stored on XMPP servers is a securely hashed manner. = What does this mean? = A hash is ...") |
m (ANd → And) |
||
Line 32: | Line 32: | ||
* DIGEST-MD5 has been declared Historical, and you shouldn't be using it anymore. Bad things happen when you use unmaintained security protocols. | * DIGEST-MD5 has been declared Historical, and you shouldn't be using it anymore. Bad things happen when you use unmaintained security protocols. | ||
* Actually, that intermediate hash is a plaintext equivalent, meaning that an attacker can just use that to log in as you anyway. | * Actually, that intermediate hash is a plaintext equivalent, meaning that an attacker can just use that to log in as you anyway. | ||
* | * And the intermediate hash is just one round of MD5. Really, that's not hard. | ||
== What hashes does SCRAM use? == | == What hashes does SCRAM use? == |
edits