Posted by J.O. Aho on 01/09/08 17:44

Alexander Mueller wrote:
> Hi,
>
> the reason behind my email is the proposal of a new Input type named "hash"
>
> <input type="hash" />
>
> I am now going into detail about why I'd consider it as important and
> technical information as well as comparisons to current techniques.

I can't see any extra advantage of your input has, more than it will just
consume more bandwidth for transporting the data. The has type will always be
the same for a site, as the passwords will always be stored in that type, a
site that uses md5 hashed passwords will never request a sh1 hashed password,
as then they can't validate the password is correct.

The method will be predictable and complicated to use and just gives a false
feel of extra security.

--

//Aho

• Next in forum: Re: New Input type proposal
• Prev in forum: New Input type proposal
• Thread view: Re: New Input type proposal

[Reply to this message]