• taladar@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    14
    ·
    edit-2
    1 day ago

    Yeah, but “some cases” is extremely vague. If it is indeed cached indefinitely under all circumstances I would expect changed passwords to never work at all.

    If it is just “some cases” it could be anything from the system using a stale cache just when it can not reach the online server (reasonable) over caches still being in some kind of TTL period to some sort of bug.

    • SL3wvmnas@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      3
      ·
      1 day ago

      In typical MS fashion this might be very hard to debug with the hundreds of interacting components./s

      In all seriousness they reviewed their internal docs not even the code (likely because it’s extremely complex) and said fixing this would brake existing functionality. I think “some cases” is doing heavy lifting for “we know many cases, but won’t tell the bad guys out there”.