Password length requirement
Password length requirement
Last week, I tried to register for a service and was really surprised by a password limit of 16 characters. Why on earth yould you impose such strict limits? Never heard of correct horse battery staple?
You're viewing a single thread.
How to properly set password requirements on your website. Accept any utf8 string. Have a nice day.
It's all fun and games until someone realizes they can just create lots of accounts with large passwords and fill your space.
Not a problem because passwords are hashed, which means they take up a fixed size, and you should have form upload size limits anyway.
hashed, which means they take up a fixed size
One would hope so anyway,
you should have form upload size limits
The above conflicts directly with OP's
Accept any utf8 stringI opened an account in 2014 and I'm still uploading my password.
If you aren't required to use an upload manager, are you really setting a solid password :thinking: