Re: Paint my Wif-Fi
- From: Richard Gadsden <richard@xxxxxxxxxxxx>
- Date: Thu, 22 Oct 2009 15:45:16 +0100
Ross Younger wrote:
* Just zis Guy, you know? <guy.chapman@xxxxxxxxxxx> wrote:More puzzling to me: some sites I use where they refuse to accept any
password with non-alphanumeric characters
This one I can understand, supposing that a number of sites have heard of
SQL injection attacks but are insufficiently clueful to figure out when
they're over-egging it. (Is there some "best practice" advice being
peddled to webdevs somewhere which says that you can cure all ills by
just blanket-rejecting non-alnums? You're fixing the wrong problem...)
and won't allow a password more than 8 characters long.
But that one is just plain daft. I would guess lazy coding or incorrect
assumptions somewhere. (Fixed size column for the unhashed password?
Stranger things have happened.)
More likely, someone in management says that people can't remember passwords longer than 8 characters.
Don't get me started on web sites that swear blindly that + is not a
valid character in the local part of an email address, or that accept
an email address and silently truncate it to whatever field length they
had put into their db "because nobody will ever have an email address
longer than 40 characters, right?" *spit*
....or can't cope with an email address with a TLD longer three characters.
--
Richard Gadsden richard@xxxxxxxxxxxx
"I disagree with what you say but I will defend to
the death your right to say it" - Attributed to Voltaire
.
- Follow-Ups:
- Re: Paint my Wif-Fi
- From: Alan J Rosenthal
- Re: Paint my Wif-Fi
- From: Maarten Wiltink
- Re: Paint my Wif-Fi
- From: mikea
- Re: Paint my Wif-Fi
- References:
- Paint my Wif-Fi
- From: Just zis Guy, you know?
- Paint my Wif-Fi
- Prev by Date: Re: Solidarity/Misanthropy (was Re: In defense of Windows)
- Next by Date: Re: Paint my Wif-Fi
- Previous by thread: Re: Paint my Wif-Fi
- Next by thread: Re: Paint my Wif-Fi
- Index(es):
Relevant Pages
|
