"Please set a new password for your account."
okay
"Your password does not meet your organization policy."
okay, you could have hinted that in the interface before I hit enter, but what's the policy
"It's a secret to everybody."
@0xabad1dea @catsalad “not only is the complexity a secret the input truncates before hashing. We won’t tell you but your password fields when logging in later do not, nor will we tell you how many characters it truncates to.
Have as much fun with this as we did when we designed it.”
@0xabad1dea cheese shop sketch... Don't tell me, I'm keen to guess
@[email protected] My all time favourate in this genre are the websites that silently truncate passwords, so it looks like they've been accepted but to actually login you need to only type the first 8 characters...
@0xabad1dea see if we told everyone the policy then hackers would tune their brute force attacks!!!
Install bonfire.mavnn.eu
Get the full app experience
