Pretty good disclosure text. There are much bigger companies that don’t manage to be this clear.
The only nitpick I have is saying “encypted” with bcrypt, even though they clearly know that bcrypt only hashes things.
I’m willing to give him a pass on that one since they’re probably worried that their General audience will understand the word encrypted but not understand the word hashed
obligatory bcrypt is not encryption
Correct but you also dont want an encrypted password. You want a hashed password.
this is true, and the name bcrypt can be misleading to non experts. i don’t blame them for getting this wrong in a pr statement 🤷♀️
Encrypted is also the word to make people feel safer.
bcrypt… with how many iterations? seems like an important detail
But didn’t club penguin close doors ?
This is a clone version.
Ahh alright thanks
What the hell is Club Penguin?
Habbo hotel for the little, little ones I think?
I guess you were born in the 2000s…
Hey, I was born in the early 2000s and Club Penguin was huge when I was a kid! Everyone my age knows about it.
I guess you were born in the 1950s, kids these days just don’t know…
So what password hashing mechanism upgrades they implemented?