Reply to post: Re: Comparing password characters

NatWest customer services: We're aware of security glitch

Angry IT Monkey

Re: Comparing password characters

> You can believe that all you want but I know for certain that a major non-banking player in the UK held plain text passwords because I manipulated them into telling me what my password was.

The password could be stored using reversible encryption, PCI compliance allows this for card numbers which don't change often if at all.

Of course the "encryption" could just be strrev() or Igpay Atinlay and nothing excuses giving out passwords. Bad major non-banking player!

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon


Biting the hand that feeds IT © 1998–2019