Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
gruez
88 days ago
|
parent
|
context
|
favorite
| on:
Microsoft mishandling example.com
I don't think there's any evidence that windows sends cleartext passwords. The whole reason why NTLM is a thing is to avoid sending cleartext passwords.
lazide
88 days ago
[–]
Outlook appears to be
p_ing
88 days ago
|
parent
[–]
The 'https://' disagrees with your 'sending clear text passwords' statement.
lazide
88 days ago
|
root
|
parent
[–]
It’s clear text to the receiving server, which is what we’re talking about, not one way hashed.
Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
