Bad Passwords

24 posts

Bad Passwords

@BadPasswords

Calling out dangerous password practices.

The Internet Katılım Haziran 2013

25 Takip Edilen35 Takipçiler

Bad Passwords retweetledi

Daniel Friesen@nadir_seen_fire·25 Ara

Looks like @AuthorizeNet doesn't have insecure @BadPasswords but I would take a "no-symbols" password restriction on sandbox site's passwords over the horrible UX of their password policy. When you enter a password with symbols other than an unknown set the rules change.

English

126

Bad Passwords@BadPasswords·2 Ağu

What could *possibly* go wrong with sending passwords in clear text? twitter.com/notshenetworks…

shenetworks@shenetworks

When you sign up for an account and they send you a confirmation with your password in clear text 🥴

English

Bad Passwords retweetledi

Brianna Wu@BriannaWu·29 Mar

My bank: 🏦: I need you to jump through security hurdles to keep your money safe. Me: 🙋‍♀️: No problem! Cybersecurity is a process, not a destination! Also My Bank: 🏦: Whoa, whoa, whoa. 21 digit password? Let's not get crazy. Also, I have never seen the character "&" in my life.

English

229

2.4K

Bad Passwords retweetledi

Daniel Friesen@nadir_seen_fire·11 Ara

🙄16 characters is the MINIMUM for a good password. Not the maximum. You got that backwards @costcocanada. @BadPasswords

English

Bad Passwords@BadPasswords·21 Ara

Oh COME ON!

English

Bad Passwords retweetledi

Fabio Viggiani@fabio_viggiani·29 Eki

Username: admin Password: <blank> That's not what we meant by passwordless...

English

761

Bad Passwords retweetledi

charm ✨@charmcgi2·20 Eki

"think of a security question worse than 'What is your mother's maiden name?'" Fedex: "hold my beer"

English

628

Bad Passwords@BadPasswords·13 Eki

So wrong!

Stef @[email protected] Christensen@Wikisteff

I am have one password that was assigned to me and is 8 characters long. I cannot change it. The password is four seed characters that appear to be constant for each user, and four numeric characters. It pains me every time I type it in.

English

Bad Passwords retweetledi

Daniel Friesen@nadir_seen_fire·13 Ağu

BC Hydro: Wonderful, your password is very strong! Also @bchydro: MAKE IT WEAKER!!! @BadPasswords

English

Bad Passwords retweetledi

Brianna Wu@BriannaWu·27 Oca

Pet peeve: restricting people from pasting in passwords when setting up new accounts. which do you want it to be? Unique, randomly generated passwords? Or reused ones you can remember. Because the practice heavily encourages the latter.

Dedham, MA 🇺🇸 English

376

Bad Passwords@BadPasswords·10 Oca

12 characters is long enough for 1995, so @StGeorgeBank is only 25 years behind. #40CharactersOrBust

Simon Cole@scole01

Hi @StGeorgeBank your password rules suck. Why can I only have a maximum length password of 12 characters?! And why do you recommend I change my password "regularly to maximise security"? @TroyHunt @PWTooStrong @BadPasswords @BadPasswordRule @BadPolicies

English

Bad Passwords retweetledi

miłosz@VeryMilosz·15 Tem

@keeganjacobson @BadPasswords @BadPolicies Oh, so this has been going on for a while! I just had the same "doh" moment... twitter.com/VeryMilosz/sta…

miłosz@VeryMilosz

Dear @Oracle: What's up with the arbitrary restrictions? The e-mail address I wanted to use is perfectly valid and will accept mail, and I don't really want to make my password less secure.

English

Bad Passwords@BadPasswords·14 Haz

Oh come on!

LuGoes Tweeting@_Snug_

@BadPasswords

English

Bad Passwords retweetledi

James Brooks@jbrooksuk·20 May

Why the weird password rules @GOVUK?

English

Keşfet

@AuthorizeNet @costcocanada @bchydro @StGeorgeBank @keeganjacobson @BadPolicies @GOVUK @elonmusk