So, do y'all store people's passwords in a way that allows them to be compared between users or what the hell kind of account management is this?
Posted under General
likely just a hash collision, so not plaintext. but still bad.
but now you know that another user is using your previous password.
Would be a shame if the entire userlist was public and you could use this to your advantage somehow right?
Only ~23700 accounts. A well written robot could maybe knock that out in an afternoon
Noyrz said:
So, do y'all store people's passwords in a way that allows them to be compared between users or what the hell kind of account management is this?
No we don't. The error message you got is just wrong, as the owner stated half a year ago "the error is a bit unclear". What I assume is that the owner(s) used a list of common passwords used and made it so that you cannot use any of those, as they are the weakest form of password you could use.