sylar182

9y

If your site only supports alpha numeric characters in my password. You should tell me that when I reset my password rather than just killing the special characters out of the string and submitting my password like that. I spent 15 minutes trying to log in before I gave up and reset it to something simple.

Also, you should let me use special characters in my password, it's 2017.

undefined

password

security

Ranter

Comments

3

jsPaysMyBills

2793

9y

What kind of bonehead just changes the user's password to whatever they want??
3

sylar182

2897

9y

@jlave215 I won't call them out, partially to protect which site has my insecure password and partially to protect them. But amateur hour for sure.
1

jpichardo

7299

9y

How did you find out?
1

sylar182

2897

9y

@jpichardo after getting logged in, I changed my password to "password!" When I tried logging in again it refused to let me in. When I typed just "password" it worked and I was able to log in.

Other limitations include no passwords over 12 characters long.
1

jpichardo

7299

9y

@sylar182 damn, that sounds more like a bug than a feature
1

cst1992

2026

9y

Call them out man, this kind of thing is unforgivable.
1

sylar182

2897

9y

@cst1992 they have an email in their inbox, hopefully as @jpichardo said, it's just a bug and not a feature, and hopefully they fix it, but I doubt they respond.
0

Root

77230

9y

Report, give 90 days to fix, release to public.

Related Rants

devRant © 2021 Hexical Labs LLC
Privacy Policy | Terms of Service