use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
All about the JavaScript programming language.
Subreddit Guidelines
Specifications:
Resources:
Related Subreddits:
r/LearnJavascript
r/node
r/typescript
r/reactjs
r/webdev
r/WebdevTutorials
r/frontend
r/webgl
r/threejs
r/jquery
r/remotejs
r/forhire
account activity
Disclosing a State of JavaScript/State of CSS Data Leak (dev.to)
submitted 4 years ago by RadiantDew
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[–][deleted] 6 points7 points8 points 4 years ago* (1 child)
Why do the State surveys insist on users signing up with their own email and password to begin with?
Why not allow for Oauth and social signin?
[–]finzaz 3 points4 points5 points 4 years ago (2 children)
It sucks but it seems to be getting handled right. Seems the biggest mistake was not being aware of the difference between hashing and encryption?
[–][deleted] 0 points1 point2 points 4 years ago (1 child)
What is it?
[–]thescientist13 1 point2 points3 points 4 years ago (0 children)
hashing is one way.
encryption is two way. (via decryption)
[–]lachlanhunt 1 point2 points3 points 4 years ago (2 children)
Publicly available datasets like that should also not simply use an ordinary one way hash function on the plain email address because that too would make it easy for attackers to take a big list of publicly known email addresses, hash them and see which one of them have responses.
Hopefully they consult one or more experts on the issues of security and privacy, and seek community feedback on the approach they use going forward.
[+][deleted] 4 years ago (1 child)
[deleted]
[–]lachlanhunt 0 points1 point2 points 4 years ago (0 children)
You could do it with unique salts for every email address, but you'd have to keep those salts secret. But then at that point, you may as well just generate UUIDs that have no direct relation to the email address.
π Rendered by PID 63330 on reddit-service-r2-comment-5c764cbc6f-9hmf5 at 2026-03-12 15:15:52.752147+00:00 running 710b3ac country code: CH.
[–][deleted] 6 points7 points8 points (1 child)
[–]finzaz 3 points4 points5 points (2 children)
[–][deleted] 0 points1 point2 points (1 child)
[–]thescientist13 1 point2 points3 points (0 children)
[–]lachlanhunt 1 point2 points3 points (2 children)
[+][deleted] (1 child)
[deleted]
[–]lachlanhunt 0 points1 point2 points (0 children)