PUBLIC MARKS with tag password

Le dernier mot de passe vous devez retenir

unlock your Mac without a password using your iPhone

Token-based authentication middleware for Express & Node.js

Reusing weaker passwords in some cases can improve security, researchers say.

u cycle through your passwords. They tell the secret story. What’s most important to you, the things you think can’t be deciphered. Words and numbers stored in the lining of your heart.

Fingerprint scanners like those on the latest iPhones could soon give way to another biometric identifier: The geometry of the veins in your hands. + Hackers in the Chaos Computer Club last year fooled the Apple TouchID, which unlocks the iPhone 5S when presented with a familiar finger, by creating a copy of fingerprint residue. Fingerprints, the hackers wrote in a blog post, are a terrible way to secure your information: You leave them everywhere when you touch things, and it’s (relatively) easy to create fakes that fool the current scanner technology.

This reader mocked Heartbleed, posted his passwords online. Guess what happened next.

This library is intended to provide forward compatibility with the password_* functions being worked on for PHP 5.5.

If you're a web developer, you've probably had to make a user account system. The most important aspect of a user account system is how user passwords are protected. User account databases are hacked frequently, so you absolutely must do something to protect your users' passwords if your website is ever breached. The best way to protect passwords is to employ salted password hashing. This page will explain how to do it properly.

Password Strength Checker

How to log in - How to remain logged in - How to store passwords - Using secret questions - Forgotten password functionality - OpenID - "Remember me" checkbox - Browser autocompletion of usernames and passwords - Secret URLs (public URLs protected by digest) - Checking password strength - E-mail validation

par la ferme du Web

tester votre mot de passe

Time and time again you hear about a company having all of their users' passwords, or "password hashes", compromised, and often there's a press response including one or more prominent security researchers demonstrating how 1,000 users had the password "batman", and so on. It's surprising how often this happens considering we've had ways to do password authentication that don't expose users' passwords, or at least makes it significantly harder to crack them, for several decades.