A place where AppGini users can exchange ideas and help each other.
https://forums.appgini.com:443/phpbb/
https://forums.appgini.com:443/phpbb/viewtopic.php?f=2&t=3377
Thanks Olaf. I'd like to add a link that explains how Chrome checks for login breaches: https://www.wired.com/story/chrome-79-password-check/onoehring wrote: ↑2020-01-02 09:44Hi D Oliveira,
let's stay with you (not your customers for a moment): Think about this: Are using a different password for your different logins? If you answer this with YES, I would find it very strange to get such a warning.
There are password breaches every day, so maybe see this as a "general" warning to actually use strong and different passwords.
You can also check for breached passwords on sites like https://haveibeenpwned.com (similar: Identity breach: https://sec.hpi.de/ilc/search?lang=en )
Can you use a different browser without that warning? Is there a chance to investigate how google checks for breaches?
Olaf
So, maybe you're using this same username/password in a site that have been breached before. It's not recommended to use the same password in multiple websites -- even if it's a strong password.All of these Password Checkup features work for people who have their username and password combos saved in Chrome and have them synced to Google's servers. Google figures that since it has a big (encrypted) database of all your passwords, it might as well compare them against a 4-billion-strong public list of compromised usernames and passwords that have been exposed in innumerable security breaches over the years. Any time Google hits a match, it notifies you that a specific set of credentials is public and unsafe and that you should probably change the password.
thank you for the clarifications ahmed and olafa.gneady wrote: ↑2020-01-04 15:16Thanks Olaf. I'd like to add a link that explains how Chrome checks for login breaches: https://www.wired.com/story/chrome-79-password-check/onoehring wrote: ↑2020-01-02 09:44Hi D Oliveira,
let's stay with you (not your customers for a moment): Think about this: Are using a different password for your different logins? If you answer this with YES, I would find it very strange to get such a warning.
There are password breaches every day, so maybe see this as a "general" warning to actually use strong and different passwords.
You can also check for breached passwords on sites like https://haveibeenpwned.com (similar: Identity breach: https://sec.hpi.de/ilc/search?lang=en )
Can you use a different browser without that warning? Is there a chance to investigate how google checks for breaches?
Olaf
From the above link:
So, maybe you're using this same username/password in a site that have been breached before. It's not recommended to use the same password in multiple websites -- even if it's a strong password.All of these Password Checkup features work for people who have their username and password combos saved in Chrome and have them synced to Google's servers. Google figures that since it has a big (encrypted) database of all your passwords, it might as well compare them against a 4-billion-strong public list of compromised usernames and passwords that have been exposed in innumerable security breaches over the years. Any time Google hits a match, it notifies you that a specific set of credentials is public and unsafe and that you should probably change the password.