this post was submitted on 25 Aug 2024
566 points (98.5% liked)

Cybersecurity - Memes

2170 readers
1 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago
MODERATORS
Sam1232188
neurohost
[email protected]
[email protected]
CannaVet
566
Obscure password requirements (feddit.org)
submitted 5 months ago by [email protected] to c/cybersecuritymemes
107 comments fedilink hide all child comments
 

What is your favourite password rule?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 69 points 5 months ago (18 children)

My favorite is "can't be more than x% similar to the last 3 passwords". Of course, you shouldn't ever define what "similar" actually means.

[–] [email protected] 97 points 5 months ago (12 children)

And the only way to check that is by storing the previous passwords in a recoverable format.

[–] zovits 3 points 5 months ago

Or by generating the hashes of all expected permutations of the password the user has just set, and keeping them until the next password is set to compare against. Granted, that would be a prodigious number, but technically doable.

load more comments (11 replies)
load more comments (16 replies)