What is your favourite password rule?

  • Wahots
    link
    fedilink
    arrow-up
    19
    ·
    4 months ago

    “Sorry, this password is too long”

    Literally gotten this error before. So annoying. It was like 18 characters.

    • hakunawazo@lemmy.world
      link
      fedilink
      arrow-up
      5
      ·
      4 months ago

      That could either mean they want to limit DDOS traffic caused by absurd long passwords, but unlikely.
      Or they store your passwords in plain text instead of a proper hash value in their way to small fields in database.

      A more absurd possibility would be if they limit characters because they send the form by GET instead of POST and everybody could see your password in the URL (e.g. in all logs).
      Security nightmare in any case.