What algorithm is used? Is is SHA256 or something built for passwords like Argon2 (which I would suggest with salting)? Are they salted at all? I just hope that all of out passwords aren’t going to be leaked or decrypted at some point.
The password hunter2 is stored as plain text in a file FAKE_PASSWORD_DONT_OPEN.dontreadme. However if it is lost it is also written down on a post it at the monitor of the server.
Edit: Sorry I just got a DMCA from solarwinds123 and they say I exposed their intellectual property, will have to take this down
looks like bcrypt https://git.chapo.chat/chapo-collective/lemmy-hexbear/src/branch/dev/server/lemmy_db/src/user.rs#L7
i usually ask for extra salt but they always inevitably come out unsalted which really grinds my gears.
