(rmondello.com)

430 points tambourine_man | 1 comments | 18 Oct 24 11:12 UTC | HN request time: 0.366s | source

Show context

pdxpatzer ◴[18 Oct 24 16:20 UTC] No.41880856[source]▶

question: would it be possible/smart to have a system where the entity that is authenticating you has a way to disclose to you the maximum password complexity that it can handle ? Something like a GeekCode string that you can feed to your password generator and come out with a the strongest password possibly handled by the system ?

replies(4): >>41880919 #>>41881211 #>>41882457 #>>41883712 #

1. 0xbadcafebee ◴[18 Oct 24 16:53 UTC] No.41881211[source]▶

>>41880856 #

Yeah, actually, that would work fine. But the people who maintain the login pages don't update their complexity rules right half the time, so the geekcode would go out of date quickly, and you'd end up spitting out invalid passwords, and people would stop using it

↑

Apple Passwords’ generated strong password format