Can we PLEASE for the LOVE OF ALL THAT IS HOLY just STOP IT with the password complexity criteria already? We all know the highest risk is that the service itself leaks the password in a security breach, and then what use is the complexity?
>Do NOT use spacesThat's some retarded coding right there
>>108574036for the end user that insists on "password", "123456", "qwertyuiop" etc.
https://x.com/JCOviedo6/status/2042246885675549170/video/1ahh shit
>>108574036Who cares? It takes only a couple more clicks for keepass to generate an autistically complex and long password compared to a basic one and one generated you can just copy paste it forever.You are using a password manager in the year of our lord 2026, right?
>>108574091>Who cares?People who actually researched it.>Composition rules are commonly used in an attempt to increase the difficulty of guessing user-chosen passwords. However, research has shown that users respond in very predictable ways to the requirements imposed by composition rules [Policies]. For example, a user who might have chosen “password” as their password would be relatively likely to choose “Password1” if required to include an uppercase letter and a number or “Password1!” if a symbol is also required.https://pages.nist.gov/800-63-4/sp800-63b.html#appA
use a keepassxc and you wont have this issue
>>108574091what would really be nice if keepass had an option to guarantee that the generated password contained "at least one X" from different categories - numbers, special characters, etc. obviously this would reduce the cryptographic strength or whatever but it would make it a lot easier to satisfy these ridiculous complexity requirements. i regularly encounter sign up forms that cannot be completed with a sufficiently random password just because it happens to not have a digit in it or something.
>>108574084>MMIWG2SLGBTQQIA+ kekthey keep adding all these new alphabets
>>108574091>You are using a password manager in the year of our lord 2026, right?I am, but an offline one I can't access on my phone.So I often have to type passwords in my phone and switching case/symbols on a phone is a pain.So I just generate a pasword with only lower case letters and numbers, then add '1!" to the end to make Pajeet happy.
>>108574187why don't you just make it so you can access it on your phone then
>>108574190Security reasons
>>108574197what security reason says it's okay to have your database on your PC but not on your phone?
>>108574203I control the operating system on my PC (Arch Linux)My phone runs Android which is backdoored.
>>108574036>We all know the highest risk is that the service itself leaks the password in a security breachNo you faggot it isn't>But it is because I say soTell us you don't work in an org large enough to require LDAP without telling us>Waaaahhh it HAWD to make and remember passphrase where are muh programmer socks
>>108574223why do you run a backdoored operating system on your phone?
>>108574144Let them get raped until they learn
>>108574232Because I can't use my banking app on a secure phone OS.
>>108574223>I believe scary things to feel eliteAnd you have no 2fa whatsoever right
>>108574240>Because it turns out rooting my phone makes it fucking useless for enterprise applications, why did I drink the Kool-Aid
>>108574036>ENTER THE EIGHT DIGIT 2FA CODE>YOU HAVE TO VERIFY WITH A 2FA CODE>I NEED THE 2FA CODE TO CONTINUE>EMAIL OR PHONE NUMBER, PICK ONE>SORRY, CAN'T DO ANYTHING WITHOUT THE 2FA CODE
>>108574036>Mommy it's my God given right to use my birthday or the word "pencil" as my passwordIt's also a service's right to bar retards from using it
>>108574240this nigga is afraid the CIA is going to get a copy of his encrypted keepass database, but logs into an app for his bank
>>108574263What codes
>>108574036>We all know the highest risk is that the service itself leaks the passwordlol no
>>108574036why can't pajeets handle \s characters?
>>108574281>What codes
>>108574036
>>108574036is that cdbaby?
>>108574367i'd add another four words to that but yeah this is basically true
>>108574329One password for the entire device when you're adding new credentialsGo run to your soijak reaction folder to try to sound smug
>>108574203Someone taking your phone or losing your phone is far more likely than someone breaking into your house and stealing your PC
>>108575367is your phone not encrypted?
My password system is this:[word I use for every password] + [word that is someone what related to that specific website/service]
>>108575390so your gmail password is password gmail?
password gmail
>>108574237it's just the normiecattle that is being tortured for basically no reasonadvanced users also suffer from rules that slightly inconvenience them for no reasonnobody will learn anything from this
