8 upvotes, 3 direct replies (showing 3)
View submission: How to keep your Reddit account safe
[deleted]
Comment by I_rarely_post at 06/05/2019 at 17:32 UTC
12 upvotes, 3 direct replies
It sounds like they take the published username/password combinations and attempt a login process. Not that they compare the vulnerable password with your actual password.
Comment by Fishezzz at 06/05/2019 at 17:33 UTC
2 upvotes, 0 direct replies
https://www.reddit.com/r/redditsecurity/comments/bletrr/how_to_keep_your_reddit_account_safe/emnu7d2
Comment by [deleted] at 06/05/2019 at 19:10 UTC
1 upvotes, 0 direct replies
They shouldn't be able to. Your password becomes the hash key for whatever algorithm they run. So you enter it in, its gets turned into a hashed key then that value is what's stored. When you log in the hash you produce is checked against the one that's stored for a match.
Key word is shouldn't. There are a few ways to turn those values into something usable some of the time. But Reddit itself should never see anything besides the output of your hashed password.