Comment by Uvix Comment by Uvix 5 days ago 1 reply Copy Link View on Hacker News Don't you generally have to enter the current password to change it to a new one?
Copy Link TZubiri 4 days ago Collapse Comment - Interesting. I guess you could do it on the frontend by asking for old and new passwords simultaneously and sending the hashes to the backend.That said, it means that you can skip this check by hacking around the front end check haha Reply View | 0 replies
Interesting. I guess you could do it on the frontend by asking for old and new passwords simultaneously and sending the hashes to the backend.
That said, it means that you can skip this check by hacking around the front end check haha