summaryrefslogtreecommitdiff
path: root/src/net/manaserv/loginhandler.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'src/net/manaserv/loginhandler.cpp')
-rw-r--r--src/net/manaserv/loginhandler.cpp6
1 files changed, 2 insertions, 4 deletions
diff --git a/src/net/manaserv/loginhandler.cpp b/src/net/manaserv/loginhandler.cpp
index bd29d1d9..9abef806 100644
--- a/src/net/manaserv/loginhandler.cpp
+++ b/src/net/manaserv/loginhandler.cpp
@@ -421,10 +421,8 @@ void LoginHandler::registerAccount(LoginData *loginData)
msg.writeInt32(0); // client version
msg.writeString(loginData->username);
- // When registering, the password and email hash is assumed by server.
- // Hence, data can be validated safely server-side.
- // This is the only time we send a clear password.
- msg.writeString(loginData->password);
+ // Use a hashed password for privacy reasons
+ msg.writeString(sha256(loginData->username + loginData->password));
msg.writeString(loginData->email);
msg.writeString(loginData->captchaResponse);
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-11-28 10:37:24 +0000