cm0002@lemmy.world to Cybersecurity - Memes@lemmy.world · 7 个月前Uh oh, somebody's not following best practices, that's a paddlinlemmy.worldimagemessage-square103fedilinkarrow-up1577arrow-down122
arrow-up1555arrow-down1imageUh oh, somebody's not following best practices, that's a paddlinlemmy.worldcm0002@lemmy.world to Cybersecurity - Memes@lemmy.world · 7 个月前message-square103fedilink
minus-squareMidnight Wolf@lemmy.worldlinkfedilinkEnglisharrow-up12·edit-27 个月前USAA is guilty of this shit. Let’s you set a huge password. Truncates it. Doesn’t tell you about it. Error when logging in. I want to beat the motherfucker behind this strategy. E: Kagi too. I bitched out the support and I got a ‘meh, it should have told you’ response. Fix your shit.
minus-squareMicrowavedTea@infosec.publinkfedilinkarrow-up6·7 个月前Not sure what is worse, not telling you and giving an error or not telling you and letting you log in (ie truncating the password both times, letting you think your password is longer than it is)
minus-squareJcbAzPx@lemmy.worldlinkfedilinkEnglisharrow-up3·7 个月前The first is more annoying, the second is scummier.
USAA is guilty of this shit. Let’s you set a huge password. Truncates it. Doesn’t tell you about it. Error when logging in.
I want to beat the motherfucker behind this strategy.
E: Kagi too. I bitched out the support and I got a ‘meh, it should have told you’ response. Fix your shit.
Not sure what is worse, not telling you and giving an error or not telling you and letting you log in (ie truncating the password both times, letting you think your password is longer than it is)
The first is more annoying, the second is scummier.