DEV Community

Discussion on: What are the worst security practices you've ever witnessed?

Collapse
mrtnrdl profile image
Martin Riedel

I've recently seen a password.js file used for "authentication" - and yes, it contained the password in cleartext. (While also talking in the comments about state-of-the-art security)

Collapse
ben profile image
Ben Halpern Author

🀯

Collapse
jsn1nj4 profile image
Elliot Derhay • Edited on

Please tell me it wasn't also checked in...

Collapse
mrtnrdl profile image
Martin Riedel

It was publicly reachable from the interwebs ;)

Thread Thread
jsn1nj4 profile image
Elliot Derhay

πŸ˜–