Flying Squid@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · 3 days agoPlease create a non-secure password.lemmy.worldimagemessage-square66fedilinkarrow-up1309arrow-down117
arrow-up1292arrow-down1imagePlease create a non-secure password.lemmy.worldFlying Squid@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · 3 days agomessage-square66fedilink
minus-squareslazer2au@lemmy.worldlinkfedilinkEnglisharrow-up36·3 days agothey don’t specify a limit so 64 character password it is.
minus-squarestevedice@sh.itjust.workslinkfedilinkEnglisharrow-up8·2 days agoMy previous bank forced 8 characters with only numbers and letters.
minus-squareorclev@lemmy.worldlinkfedilinkEnglisharrow-up28·3 days agoGo all in, 1024 character password.
minus-squareSanctimoniousApe@lemmings.worldlinkfedilinkEnglisharrow-up40·3 days agoThey’ll accept it, but won’t tell you they ignored everything after character n, and their login page won’t take anything but the “correct” password so you’ll be spending some time figuring out the actual character count limit…
minus-squareKaity@leminal.spacelinkfedilinkEnglisharrow-up6·2 days agoEven worse the password was accepted in full when registered, but the login field won’t accept the full length.
minus-squareMoonrise2473@feddit.itlinkfedilinkEnglisharrow-up8·3 days agoFucking MICROSOFT did that with Hotmail
minus-squareKazumara@discuss.tchncs.delinkfedilinkEnglisharrow-up2·2 days agoNot a big surprise, they did the same with Windows 98. Everything after the first 14 was silently dropped.
minus-squarefrezik@midwest.sociallinkfedilinkEnglisharrow-up1·2 days agoBcrypt/Scrypt have a 72 byte limit. Developers can get around that by putting it through a regular hash first, but that’s not common.
they don’t specify a limit so 64 character password it is.
My previous bank forced 8 characters with only numbers and letters.
Go all in, 1024 character password.
They’ll accept it, but won’t tell you they ignored everything after character n, and their login page won’t take anything but the “correct” password so you’ll be spending some time figuring out the actual character count limit…
Even worse the password was accepted in full when registered, but the login field won’t accept the full length.
Fucking MICROSOFT did that with Hotmail
Not a big surprise, they did the same with Windows 98. Everything after the first 14 was silently dropped.
Bcrypt/Scrypt have a 72 byte limit. Developers can get around that by putting it through a regular hash first, but that’s not common.