2 posts • joined Sunday 2nd September 2012 07:24 GMT
Re: RE: This bug represents a cultural problem at FB
This is security 101. You don't send user modifiable parameters. You don't send parameters in clear text. Absolutely stupid.
There should be no reason to "test" this scenario: the scenario should not exist. FacePlant "technology" sucks; you entrust your stuff to FacePlant, prepare to have your information harvested.
department of redundancy department
"One of the affected sites stored its passwords unencrypted in plaintext."
Not both unencrypted AND plaintext?!?! The horror!