this post was submitted on 25 Aug 2024
565 points (98.5% liked)
Cybersecurity - Memes
1975 readers
2 users here now
Only the hottest memes in Cybersecurity
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I just wish these password requirements could be added as an attribute to the password field so password managers could generate a password that matches those rules.
There were discussions along those lines
I wish we could get rid of many of those stupid rules.
Agreed, but if your password manager can just generate a password that matches the rules, you don't really have to care about it. Currently you just get your browser/password manager to generate one, get an error, then just manually append whatever missing required character was needed.
But yeah, in most cases the password requirements have not been set by anyone that actually knows anything about password security.
And an implementation by Apple
https://github.com/apple/password-manager-resources
nowadays we have passkeys anyways which is just making the good old "random max length password with all the character groups" explicit.