So you know how Password Hashing on server side works?
-
-
Replying to @TotallyNotYT
You’re naïve if you think they’re hashed or stored encrypted in a way Amazon can’t view them.https://boingboing.net/2019/04/11/1000-clips-per-shift.html …
1 reply 0 retweets 0 likes -
Replying to @marcedwards
Actually, they are. Whether Amazon likes it or not, it has to be. It's a major security flaw if they're not hashed, especially private data, plain text or non-encrypted files is just an easy way for hackers to get in. It's fairly simple app security basics
1 reply 0 retweets 0 likes -
Replying to @TotallyNotYT
You said: “They don't store recordings on their servers” They do. You said: “…that's risking everything Amazon owns, something they wouldn't do” regarding being able to view the videos. They can.
1 reply 0 retweets 0 likes -
Replying to @marcedwards
“They don't store recordings on their servers” They don't, unless you allow them too, that's on you. “…that's risking everything Amazon owns, something they wouldn't do” No, not regarding viewing the videos, regarding basic internet security principles. (1/2)
1 reply 0 retweets 0 likes -
Replying to @TotallyNotYT @marcedwards
If they didn't hash passwords or private information, that means that any person could spend a couple of hours on a basic platform and hack Amazon completely. (Obviously a bit of a stretch, but the point is it's insecure, in a technical point of view)
1 reply 0 retweets 0 likes -
Replying to @TotallyNotYT
I’m not talking about passwords or hacking. I’m talking about Amazon themselves being able to view videos, which they can do.
1 reply 0 retweets 0 likes -
Replying to @marcedwards
Dude, I know you’re not talking about hacking, but to prevent hacking, they need to encrypt files separately, by a hash, for security reasons. Because of this, they can’t just ‘view’ the videos. They have the file, but they need the password to view it too. (1/2)
1 reply 0 retweets 0 likes -
Replying to @TotallyNotYT @marcedwards
Think of it this way. If they could just view ‘any’ video, then a single hacker just needs to get a hand of 1 key from Amazon, and they can open any account, or any video. This is why data is encrypted by the user’s details, so unless you have that, you can’t open it.
1 reply 0 retweets 0 likes -
Replying to @TotallyNotYT
You missed the point: They can actually view the videos. They’ve said they can. If the videos are encrypted, they have the key.
2 replies 0 retweets 0 likes
First, if they said they can, then why are you worried? Second, standard or normal encryption means that it’s a key per user. It’s simple, if someone gets a hold of one key, that means they can just access anyone’s files? It makes more sense for them to have 1 key per account
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.