Not sure if anyone noticed, but according to the "login.js" snippet, Steam remov... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gitgud on Jan 12, 2021 \| parent \| context \| favorite \| on: Steam's login method is kinda interesting Not sure if anyone noticed, but according to the "login.js" snippet, Steam removes all non-standard ascii characters from the password, before encrypting it... Doesn't that essentially reduce the password's strength? Especially if there's a lot of non-ascii characters in it....

roelschroeven on Jan 12, 2021 [–]

I would think so, yes. Maybe they are trying to prevent problems with users logging in from computers using different code pages? Is that still a problem?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact