Timeline for Is it safe to display information about old passwords on login failure?
Current License: CC BY-SA 2.5
2 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Oct 4, 2013 at 16:09 | comment | added | Jesse C. Slicer | I would guesstimate it may be worse than that - that it IS a security issue on Facebook. I've seen (admittedly poor) user practices when passwords are changed - a "1" at the end is changed to a "2" and so on. So if "P4ssw0rd1" used to be valid password, Joe Hacker could be emboldened to move forward to try "P4ssw0rd2", etc. until FB lets him in. | |
| Feb 9, 2011 at 15:25 | history | answered | ozz | CC BY-SA 2.5 |