Cybersecurity - Memes

2157 readers

1 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago

MODERATORS

[email protected]

Obscure password requirements (feddit.org)

submitted 5 months ago by [email protected] to c/[email protected]

103 comments fedilink hide all child comments

What is your favourite password rule?

(page 3) 5 comments

sorted by: hot top controversial new old

[–] [email protected] 0 points 5 months ago* (last edited 5 months ago) (6 children)

Got this site once stating "passwords can't contain parts of username" icw a 64 character pw.

And usenames like "daneelolivaw" block passwords with

da an ne ee el...

dan ane nee eel ...

dane anee neel.... etc in them

load more comments (6 replies)

[–] [email protected] 0 points 5 months ago (5 children)

I just wish these password requirements could be added as an attribute to the password field so password managers could generate a password that matches those rules.

load more comments (5 replies)

[–] [email protected] 3 points 5 months ago (5 children)

My favorite is "can't be more than x% similar to the last 3 passwords". Of course, you shouldn't ever define what "similar" actually means.

[–] [email protected] 3 points 5 months ago (4 children)

And the only way to check that is by storing the previous passwords in a recoverable format.

[–] [email protected] 2 points 5 months ago (7 children)

I'm not sure but I think the previous password is mostly stored in an unrecoverable format and only upon changing your password, when you have to enter your previous one, does it store it in an unrecoverable format for 10x or so generations. Just a guess though for how AD might do it.

load more comments (7 replies)

load more comments (3 replies)

load more comments (4 replies)

load more comments