135 Are there any Cyber Pedes who can write a script that extracts their password from the old cookies? (Picture unrelated) (media.patriots.win) posted 130 days ago by my_pw_is_password 130 days ago by my_pw_is_password +135 / -0 14 comments share 14 comments share save hide report block hide child comments Comments (14) sorted by: top new old worst You're viewing a single comment thread. View all comments, or full comment thread. ▲ 1 ▼ – my_pw_is_password [S] 1 point 130 days ago +1 / -0 And if I stay logged in, that's cookies right? But I guess that just uses some public/private key hashes then, and they probably changed? permalink save report block reply ▲ 4 ▼ – IlIlIlIlIl 4 points 130 days ago +4 / -0 Servers generate auth tokens from which passwords cannot be extracted. One popular approach is JWT. permalink parent save report block reply ▲ 1 ▼ – Tiquortoo 1 point 129 days ago +1 / -0 The cookie does not have the password. It takes the place of it temporarily and yes often includes some crytpographically secured data only the server knows as "proof". It's not the password in any way though. permalink parent save report block reply
And if I stay logged in, that's cookies right? But I guess that just uses some public/private key hashes then, and they probably changed?
Servers generate auth tokens from which passwords cannot be extracted. One popular approach is JWT.
The cookie does not have the password. It takes the place of it temporarily and yes often includes some crytpographically secured data only the server knows as "proof". It's not the password in any way though.