Follow

Bit of a weird question. Has anyone compiled a list of the requirements different websites have for passwords? It's for a thing.

Boosts appreciated!

@Scmbradley
I think I've come across this list before, but it's targeted at a particular flavor of password requirement ;)
github.com/duffn/dumb-password

@Scmbradley I would settle for a public list of shame for anyone who has a maximum character limit in the single digits.

@trashheap @Scmbradley An IBM mainframe I use at work allows a maximum of eight digits, and they must all be alphanumeric. No fancy accented characters, either: Ebcdic was good enough for Granddad and it's good enough for you.

@Scmbradley Apple’s password manager resources might be helpful. There’s a big JSON file in quirks/password-rules.json with loads of the weird requirements sites have. github.com/apple/password-mana

@Scmbradley bitwarden is oss and may have some details published somewhere

@kemonine ah yeah of course password managers will have to know these rules. Good idea.

@Scmbradley If any of them are stricter than Nexus Mods, ain't *nobody* accessing your account. XD

Seriously, Nexus Mods requires like 20 characters, uppercase, lowercase, numbers, special characters, and your first-born child. It's an absolute cluster whenever I want to download an armor set. XD

@Scmbradley The world needs something like the famous "Myths programmers believe about names" for passwords. It would cover all these

@Scmbradley "minlength: 4; maxlength: 4; allowed: digit;"

nice target

@Scmbradley The silliest one I have come across so far was "password too long" 🤦

Sign in to participate in the conversation
Mathstodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!