Passwords - eviltoast

We’ve all been there.

    • stepone@lemmy.world
      link
      fedilink
      English
      arrow-up
      12
      ·
      1 year ago

      It often means that one could have derived the correct password from the set of rules - but those rules are not shown when asking for the old password

      • 5too@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        1 year ago

        Exactly this. I want to normalize showing the password requirements when you don’t immediately get the password - if you made me jump through hoops the first time, at least remind me what they were!

    • tony@lemmy.hoyle.me.uk
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      1 year ago

      Sometimes it means the page checking the password is following a different ruleset eg. the main page is case sensitive and the change password page isn’t. Sometimes it’s stuff like the entered password is silently truncated to a fixed number of characters and because of that won’t let you log in. Sometimes it’s wierd character expansions being passed directly to the password checking routine (& or similar).