I am not sure why a program being intentionally insecure makes the vulnerability any less secure?
This silently removes _all_ security from any user who uses a password comprised solely of non CP1252 characters, from a product designed to improve security. How could this make anyone more vulnerable?
I am not sure why a program being intentionally insecure makes the vulnerability any less secure?
This silently removes _all_ security from any user who uses a password comprised solely of non CP1252 characters, from a product designed to improve security. How could this make anyone more vulnerable?