Anyone else send sk3tch a fake password?

Personally, I tried the ‘Wikipedia standard’ SQL injection:

' or '1'='1

Why isn’t this an easter egg yet? Games in alpha need easter eggs!

We were definitely tempted to do something cute with the password, but we figured that doing anything on the back end would pose an unnecessary security risk. :slight_smile: If we don’t have an extra endpoint that does password checking, it means we don’t need to worry about that endpoint being secure. The password data is actually never sent to our servers at all.

If you gave a fake password, assume that you pulled a fast one over sk3tch.

I wonder if sk3tch has seen this thread.

Don’t worry; sk3tch can’t see the Out of Character category. :smirk: