Open billyb2 opened 3 years ago
So HaveIBeenPwned allows for checking passwords against their servers using a free api. It would be trivial for the frontend and backend to not accept pwned passwords, since it would force users to use more secure passwords.
So HaveIBeenPwned allows for checking passwords against their servers using a free api. It would be trivial for the frontend and backend to not accept pwned passwords, since it would force users to use more secure passwords.