Sign in or Join FriendFeed
FriendFeed is the easiest way to share online. Learn more »
Stephan Planken
Stephan Planken
Password restrictions: only specific length, can't start with capital, at least 1 capital, only certain chars. Please have mercy.
May 7, 2012 from Advanced Tweets - Comment - Share
Oh, and it can't resemble any of the last ten. This sort of thing makes me cringe. - Stephan Planken from iPhone
I honestly don't understand the rationale for length restrictions. This just makes brute forcing so much easier. This isn't the '80s where hard drives and RAM were superexpensive and you had to count bytes. - Victor Ganata
Yeah, it's a brain dead requirement and I think it's mostly because the auth has to happen across the lowest common denominator —which is something in that could well go back to the COBOL days where a plain text password (WHAT?!) was stored in a fixed length field. EDIT: Tinfoil, oops, I had goblin ore on the brain. - Micah
Micah, I think you meant: KOBOLD. - Tinfoil 2.0
One of my student loan accounts is like that - upper case, lower case, a number, so many letters, and can't be any of the last five when I inevitably forget it. WTF is someone going to do, pay it for me? - Pixie
I think Micah is right but I'm not sure which brain dead app has the strange requirements. This is a login across Citrix, Xenn apps, and all kinds of archaic stuff like Lotus Notes. But remembering about 10-12 passwords is plain pestering users. What this results in is users taping passwords to screens. - Stephan Planken from iPhone
I'm just puzzled why the first digit can't be caps. - Stephan Planken from iPhone
Your student loan account may hold privacy sensitive info? - Stephan Planken from iPhone
Just address and phone number. Less info than my bank account and that has way less stringent password requirements. - Pixie
Have you ever looked at the password requirements at USCIS? http://1.usa.gov/IQTIMR - Betsy #TeamMonique
There is something to say for more complicated passwords but those kind of requirements are ridiculous. Especially since at one of the systems I use they expire every 30 days. - Stephan Planken from iPhone
That sounds painful - Winckel
It is. I try avoiding logging on whenever I can. Which means that every time I do my password has expired and the circle completes. - Stephan Planken from iPhone