Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
Used to be a good sign the password is transmitted over XML somewhere, like an old SOAP web service. Special characters often broke the XML, and made for spectacular vulnerabilities.
-
ars140542yThe customer support guys were asking me to make it so passwords could be 7 characters long without special characters. Apparently the customers struggle to manage and remember passwords.
I don't even know how fucking dumb you have to be, the browser stores shit for you but not even that is good enough. I gave up and will use social login, not my problem anymore if they can't login. -
I actually don't get those stupid policies. A 32 char pure alphanumeric password is already orders of magnitude harder to brute force than 8 chars including specials...
And long passwords can easily be remembered through mnemotechnics... -
Oh dear. I use 50 char passwords with lower, upper, numbers and symbols. I get absolutely angry when they don't let me use my password pattern
-
@Nanos Even worse are the code search features of, for example, Bitbucket. It completely ignores any symbols, even if you quote your search terms.
It ignores symbols. _In a code search._ -
hjk10156962y@KryptonTurtle often I generate weaker o passwords just because I had to mess with the settings for some stupid bullshit pattern
-
What's the min and max limits?
If they're high this could theoretically be a dev who's tried to force the CorrectHorseBatteryStaple-rule onto their users.
If the limits are low you could be dealing with lazy ass devs who used the incorrect DB field type.
"Set your new password.
Please don't use special characters or symbols"
😳
random