114

What is it with websites restricting passwords to 8 - 16 characters? Is there some technical limitation to their system?? (lemmy.ca)

submitted 1 week ago by Showroom7561@lemmy.ca to c/privacy@lemmy.ca

83 comments fedilink hide all child comments

It's infuriating to create a "strong password" with letters, numbers, upper and lowercase, symbols, and non-repeating text... but it has to be only 8 to 16 characters long.

That's not a "strong" password, random characters or not.

Is there a limitation that somehow prevents these sites from allowing more than 16 characters?

I'm talking government websites, not just forums. It seems crazy to me.

you are viewing a single comment's thread
view the rest of the comments

[-] MelodiousFunk@slrpnk.net 11 points 1 week ago* (last edited 1 week ago)

Yeah, imagine my shock and disappointment when encountering such limitations signing up for credit monitoring (by one of the big 3). It's not enough that my employer has a breach, no. But also finding out that one of the big players has some ridiculous 12 character alphanumeric password restriction. Absolute dogshit.

[-] sugar_in_your_tea@sh.itjust.works 3 points 6 days ago

A random 12-character password should take years to crack. But they're probably also storing it as plaintext, so no need to crack, just breach the DB (which is probably also insecure).

this post was submitted on 30 May 2025

114 points (98.3% liked)

privacy

4487 readers

120 users here now

Big tech and governments are monitoring and recording your eating activities. c/Privacy provides tips and tricks to protect your privacy against global surveillance.

Partners:

community.nicfab.it/c/privacy

founded 3 years ago

MODERATORS

QuentinCallaghan@sopuli.xyz

Kokomheart@lemmy.ca

altair222@beehaw.org