this post was submitted on 11 Jan 2026
174 points (100.0% liked)
Cybersecurity - Memes
3752 readers
202 users here now
Only the hottest memes in Cybersecurity
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Correct horse battery staple.
Of course there's an xkcd for that:-)
I just recently had to make a password for some website.
The requirements were to use at least one capital letter, at least one number, and EXACTLY ONE of a short list of special characters in your password. It also could be no longer than 10 characters.
Major wtf moment.
FixUrSh1t!
When the plaintext-stored password inevitably get leaked at some point, I hope whoever actually reads through that list gets a laugh out of it.
It was a financial site wasn't it. They're the worst for not updating security guidelines.
There are various reasons I hate the banks I use. One of the top reason is this ancient obsolete password rule.
The biggest reason to hate my banks is they're forcing to use their android app and policing how I can use my phone by refusing to run if I have accessibility service on, and developers options enabled.
I just keep updating my reviews as they are anti disabled people[1].
[1]~~Please correct me on the proper term because I'm ESL and I forgot.~~
That's means they're storing your password directly in a database somewhere. Not even hashing it. Super lazy coding.
I've used this website in the past to generate passwords. It is based on this xkcd comic.
Most FOSS password managers will also do it, like KeePass.
I don't use KeePass anymore, but from this screenshot and the documentation I believe that it does not generate passphrases as defined by this xkcd comic.
I've configured this for KeePassXC iirc, but you're right, the default config does not generate XKCD passwords. Just saying it's not impossible.
Bitwarden does this out of the box.
Just adding if someone reading wants to use passphrase generation that's built in.