this post was submitted on 01 Jul 2024
0 points (50.0% liked)

Lemmy

12541 readers
33 users here now

Everything about Lemmy; bugs, gripes, praises, and advocacy.

For discussion about the lemmy.ml instance, go to !meta@lemmy.ml.

founded 4 years ago
MODERATORS
nutomic@lemmy.ml
0
Since the last update, I have to snip off the end of my password to log in (lemmy.ml)
submitted 4 months ago by frightful_hobgoblin@lemmy.ml to c/lemmy@lemmy.ml
11 comments fedilink hide all child comments
 

I input my password.

It refuses to log me in. Says 'Passwords must be between 10 and 60 characters'

I delete the last few characters. Now it lets me log in.

no bueno

you are viewing a single comment's thread
view the rest of the comments
[–] 2xsaiko@discuss.tchncs.de 9 points 4 months ago (1 children)

That probably means it was silently cutting off the password until now. Cursed, reminds me of the original unix crypt() which I think did the same.

[–] frightful_hobgoblin@lemmy.ml 6 points 4 months ago (1 children)

I was thinking the same.

Can anyone check the code and verify?

Coz if [the first 60 characters of a long password] has the same hash as [the long password], something is fishy.

[–] frightful_hobgoblin@lemmy.ml 3 points 4 months ago

I think it only reads the first FIFTY characters 😱