844

Password length requirement (feddit.org)

submitted 1 month ago* (last edited 1 month ago) by cron@feddit.org to c/cybersecuritymemes@lemmy.world

172 comments fedilink hide all child comments

Last week, I tried to register for a service and was really surprised by a password limit of 16 characters. Why on earth yould you impose such strict limits? Never heard of correct horse battery staple?

you are viewing a single comment's thread
view the rest of the comments

[-] pixelscript@lemm.ee 1 points 1 month ago

I'm not saying it was a soft rule where the form refused to validate my input. It was an actual, fully-described rule in the bulleted list among the other rules. For whatever reason they specifically went out of their way to enforce it. And I cannot fathom why they would.

[-] subignition@fedia.io 1 points 1 month ago

I understood what you meant, it doesn't change my answer though

The back-end environment could have at least a few ways to screw things up if, for example, they were passing the password thru a shell script to hash it and had poor sanitization of the input

!, #, and $ can be particular troublemakers at the start of a string, there's probably more I'm not aware of too.

this post was submitted on 18 Aug 2024

844 points (98.8% liked)

Cybersecurity - Memes

1893 readers

4 users here now

Only the hottest memes in Cybersecurity

founded 1 year ago

MODERATORS

Sam1232188@lemmy.world

neurohost@lemmy.world

Alphadef@programming.dev

CannaVet@lemmy.world