Hal Pomeranz · Apr 4, 2013 · 2:24 PM UTC

Hal Pomeranz · Apr 4, 2013 · 2:24 PM UTC

Hal Pomeranz @hal_pomeranz

4 Apr 2013

WTF is the deal with web sites only allowing alphanumeric passwords lately? Is this the fault of some shitty back-end library?

Apr 4, 2013 · 2:24 PM UTC

Hal Pomeranz · Apr 4, 2013 · 3:06 PM UTC

Hal Pomeranz @hal_pomeranz

4 Apr 2013

@averagesecguy Max 15 chars?

Frank Wiles · Apr 4, 2013 · 4:08 PM UTC

Frank Wiles @fwiles

4 Apr 2013

@hal_pomeranz And limits, "We're sorry your password can only be 6-8 characters" Ummm do you not realize that limits the problem space?