Loading Profile...
Limited password policy
I'm interested to know why you limit passwords to 12 characters or less and don't allow punctuation. This, in my opinion, promotes the use of simple, insecure, passwords. I've never understood such artificial limits on passwords.
I’m frustrated
1
person has this question
I have this question, too!
Tell me when someone answers.
The more people who ask this question, the more it gets noticed.
The more people who ask this question, the more it gets noticed.
Create a customer community for your own organization
Plans starting at $19/month
-
Inappropriate?Well, it's a combination of maintaining ease-of-use so that people can remember what they actually used. We could enforce all manner of rules here but if after the 3rd attempt we kept popping up with things like "you must use at least an upper class letter" or "punctuation would be good at the end" - I think you'd get fed up and close down the site pretty quickly!
-
Inappropriate?Is the worry that without some limits people will type complicated passwords and then forget them? If so, isn't this solved by offering the traditional 'forgot password' type functionality? Putting restrictions on what passwords I can use is a personal bugbear of mine. I use pwdhash to create site specific passwords by hashing the domain and a master password. This results in longer passwords (around 15 characters) that often include punctuation. Whenever I'm unable to use my password of choice I want to know the reason behind the decision. Luckily, with getsatisfaction, I get a chance to ask you guys directly. -
Inappropriate?Indeed you do :-) I promise we'll look at the password restriction field next week after we've done the rest of our big list ready for UK, and later US launch.. honest... If you don't get anything back - bug me again, but it's now on the list. Thanks for the feedback on it - appreciated.
-
Inappropriate?That's great Phillip. Good luck with the UK and US launch.
1 person says
this answers the question
EMPLOYEE
