Your Internet Banking Password should one special character (~!@#%^&*)
Great grammar on their part.
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
Your Internet Banking Password should one special character (~!@#%^&*)
Great grammar on their part.
atleast a 5/10 in effort
If >1 special character is not allowed the last check should be failed . The second check is literally satisfied even if there are 2+ specials.
I'd not be using that bank.
Please tell me someone didn't buy software with 'atleast' spelled like that in there. Please, tell me someone tested the web app and had the brains God gave a douglas fir and knew that wasn't a word; that it was never a word; that the writer's spell check should have picked that up; that it's not been over-ruled by stupid so much that it just takes it.
Well now. When we've been enforcing password requirements at work, we've had to enforce a bizarre combination of "you must have a certain level of complexity", but also, "you must be slightly vague about what the requirements actually are, because otherwise it lets an attacker tune a dictionary attack against you". Which just strikes me as a way to piss off our users, but security team say it's a requirement, therefore, it's a requirement, no arguing.
"One" special character is crazy; I'd have guessed that was a catch-all for the other strange password requirements:
We've had customers' own security teams asking us if we can enforce "no right click" / "no autocomplete" to stop their users in-house doing such things; I've been trying to push back on that as a security misfeature, but you can't question the cult thinking.
Why do they think no copy paste is safer?
Because if you disable browser autocomplete, what's obviously going to happen is that everyone will have a text file open with every single one of their passwords in so that they can copy-paste them in. So prevent that. But what happens if you prevent that is that everyone will choose terrible, weak passwords instead. Something like September2025!
probably meets the 'complexity' requirement...
If you have to try really hard to meet their password requirements, that’s how you know it’s super secure.
You are using a special character that is likely reserved internally
It says “one special character”. Not “at least one”.
oh. oh god. what the fuck.