I had used a website that changed the max length of passwords, but ignored, that existing ones might already have been longer.... I overcame the client side validation, but the server side validated it, too...
this post was submitted on 26 Nov 2024
1118 points (99.0% liked)
Microblog Memes
6036 readers
2170 users here now
A place to share screenshots of Microblog posts, whether from Mastodon, tumblr, ~~Twitter~~ X, KBin, Threads or elsewhere.
Created as an evolution of White People Twitter and other tweet-capture subreddits.
Rules:
- Please put at least one word relevant to the post in the post title.
- Be nice.
- No advertising, brand promotion or guerilla marketing.
- Posters are encouraged to link to the toot or tweet etc in the description of posts.
Related communities:
founded 1 year ago
MODERATORS
Good that the backend validated it, but why in god's name would you ever lower the maximum password length?!?
I made a website to test your typing speed and I felt dirty disabling pasting, but that feels like an actual good use-case.
load more comments
(4 replies)
Can confirm. Use this one myself. Because of course my bank considers pasting into the password field to be a security risk.
Can I get one that does the same with autofill
Just not allowing the clipboard is a legitimate security measure though. A lot of apps can read that memory space, so it's kind of a security black hole.l
load more comments
(3 replies)
It doesn't work all the time from what I've found. There are still websites that bypass this and fuck with paste anyways.
been using it for years :)