Send hashed password to service

PlugaruT / pwned-checker

Simple application for checking if a password is found in Pwned Passwords repository

GNU Lesser General Public License v3.0

10 stars 4 forks source link

Send hashed password to service #11

Closed tintou closed 6 years ago

tintou commented 6 years ago

The application is currently sending password to the service, the REST API allows to get SHA-1 hashed password. Please use this solution instead for security reasons.

PlugaruT commented 6 years ago

@tintou yes, I know. It's in my pipeline. The next release will have this implemented.

PlugaruT commented 6 years ago

The only downside that I see is that it won't be possible to get the number of times a password is present in the database.

PlugaruT commented 6 years ago

Closing this because it is implemented in 0.1.8