this post was submitted on 05 Jun 2024
241 points (95.5% liked)

Greentext

4452 readers
1407 users here now

This is a place to share greentexts and witness the confounding life of Anon. If you're new to the Greentext community, think of it as a sort of zoo with Anon as the main attraction.

Be warned:

If you find yourself getting angry (or god forbid, agreeing) with something Anon has said, you might be doing it wrong.

founded 1 year ago
MODERATORS
 

Not a true greentext but I hope I have captured the spirit of it. (First time I wrote smth like this, don't be harsh on me. >w<)

you are viewing a single comment's thread
view the rest of the comments
[–] TootSweet@lemmy.world 19 points 5 months ago (4 children)

Websites need desperately to display their password creation rules on login pages. If I knew this particular site had (for some dumbass reason) a maximum password length less than the length of the password I'd otherwise use on that site or (also completely unreasonably) restricts special characters, I can more easily figure out what password I used when I signed up with fewer wrong guesses, all without sacrificing any security. (It's not like the rules aren't public info that anyone can get. Just don't make me go halfway through the signup process to get that information if I'm just trying to log in.)

[–] Martineski@lemmy.dbzer0.com 5 points 5 months ago (1 children)

Oh yeah, that would be a huge QoL thing.

[–] KISSmyOSFeddit@lemmy.world -1 points 5 months ago (1 children)

It would also let hackers know what combinations not to try.

I have a better proposal: If your login page has any restriction on passwords (other than being part of Unicode and a max length of 128 characters) then your site should be shut down.

[–] Martineski@lemmy.dbzer0.com 14 points 5 months ago

It would also let hackers know what combinations not to try.

You mean the exact thing they could learn by clicking on "sign up"?

load more comments (2 replies)