170
submitted 1 year ago* (last edited 1 year ago) by likeaduck@programming.dev to c/programmer_humor@programming.dev
you are viewing a single comment's thread
view the rest of the comments
[-] KaeruCT@programming.dev 11 points 1 year ago

My bank requires your password to contain NO vowels. I always forget when I update the password (forced to every 3 months) and the error never mentions it.

[-] zarp86@sh.itjust.works 7 points 1 year ago

I'm struggling to think why this would be a thing. The only guess I have is someone was told to enforce "no dictionary words in a password" and saw that as an 'easier' way to implement?

[-] tikitaki@kbin.social 5 points 1 year ago* (last edited 1 year ago)

One one hand it reduces the total # of characters needed to brute force which is bad. On the other hand, like you said, it makes it so dictionary attacks are weaker - which is good

Although I think you could just get a regular dictionary, remove the vowels, and it would probably work just fine

So ultimately? I think stupid decision

this post was submitted on 17 Jul 2023
170 points (89.0% liked)

Programmer Humor

19503 readers
1127 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 1 year ago
MODERATORS