Cybersecurity - Memes

2089 readers

2 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago

MODERATORS

851

Password length requirement (feddit.org)

submitted 5 months ago* (last edited 5 months ago) by [email protected] to c/cybersecuritymemes

170 comments fedilink hide all child comments

Last week, I tried to register for a service and was really surprised by a password limit of 16 characters. Why on earth yould you impose such strict limits? Never heard of correct horse battery staple?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 39 points 5 months ago (2 children)

A prominent Australian bank has these requirements:

For Internet Banking, your password must be six to eight characters long.

To improve security, it should:

contain both numbers and letters.
include upper and lower-case letters (your password is case sensitive).

[–] [email protected] 10 points 5 months ago (1 children)

8 character max means they're running it on a mainframe I think, though I don't know enough about mainframes to know if this is a normal level of bad or really bad

[–] [email protected] 7 points 5 months ago (1 children)

Could be (probably still is) running COBOL. It's a combination of "if it works and costs money to upgrade, why change" but mostly "if we migrate one thing it will break five other things".

[–] [email protected] 1 points 5 months ago

Yep, that sounds like old bank tech to me

[–] clearedtoland 7 points 5 months ago

8??? For banking? I haven’t used less than like 16 in at least 5, maybe 10 years. Jeez.