548
NIST proposes barring some of the most nonsensical password rules (arstechnica.com)
submitted 1 month ago by Amicitas@lemmy.world to c/technology@lemmy.world
179 comments fedilink hide all child comments

Here is the text of the NIST sp800-63b Digital Identity Guidelines.

you are viewing a single comment's thread
view the rest of the comments
[-] VantaBrandon@lemmy.world 90 points 1 month ago

How about making it illegal to block copying and pasting on website forms. I'm literally more likely to make a mistake by typing a routing number than copying and pasting it. The penalty for should be death by firing into the sun to anyone caught implementing any such stupidity.

[-] dsilverz@thelemmy.club 16 points 1 month ago

I circumvent that by right-clicking, then choosing "Inspect element", then switching to the tab "Console", then typing $0.value = "TheValueIWantToPaste". If right-clicking is also disabled, I use either F12 or Tools menu > DevTools.

[-] GreenKnight23@lemmy.world 16 points 1 month ago

that's so easy! /s

[-] fosho@lemmy.ca 4 points 1 month ago

easier than typing out a long string

[-] xthexder@l.sw0.com 4 points 1 month ago

And here I wrote an AutoHotKey script to type out my clipboard a character at a time so I can paste stuff into this remote desktop software I'm using that doesn't support paste...

It's kinda necessary when the server's unlock password is 256 characters long and completely random.

[-] GreenKnight23@lemmy.world 1 points 1 month ago

if it's citrix you used to be able to modify the local connection config file to allow access to the clipboard regardless of what the server allowed.

been a few years since I needed to do it, but it was possible at one time.

[-] trolololol@lemmy.world 1 points 1 month ago

That sounds fun on mobile

[-] sugar_in_your_tea@sh.itjust.works 1 points 1 month ago

Or just delete the "readonly" bit. I did that on Treasury Direct for years until they finally removed that nonsense.

[-] dsilverz@thelemmy.club 1 points 1 month ago

Sometimes it's not "readonly", but a Javascript thing that "event.preventDefault()" and "return false" during the "onpaste" event. As the event is generally set using elm.addEventListener instead of setting elm.onpaste, it's not possible to remove the listener, as it'd need the reference for the handler function that was set to handle the mentioned JS event. So simply setting the value directly using elm.value bypasses the onpaste event.

[-] sugar_in_your_tea@sh.itjust.works 2 points 1 month ago

That's fair, not sure why they'd go through that much effort when DOM attributes exist.

load more comments (21 replies)
this post was submitted on 26 Sep 2024
548 points (99.3% liked)

Technology

59340 readers
1421 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
L3s@fry.gs
L4s@fry.gs
L4s@lemmy.world
enu@lemmy.world