Post ARmExH5kxxBSp9XXea by erikbtoots@layer8.space
 (DIR) More posts by erikbtoots@layer8.space
 (DIR) Post #AQKJopqsqKUMEZJVk8 by erikbtoots@layer8.space
       2022-12-05T12:05:57Z
       
       0 likes, 0 repeats
       
       Why would you have a max password length that is smaller than 100?
       
 (DIR) Post #AQKJoqXQIAW4MVDU36 by Sammy8806@layer8.space
       2022-12-06T10:13:33Z
       
       0 likes, 0 repeats
       
       @erikbtoots Because some algorithms don't work with that much data. Example: BCryptSome Data for it: https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#input-limits
       
 (DIR) Post #ARmExH5kxxBSp9XXea by erikbtoots@layer8.space
       2023-01-18T19:23:07Z
       
       0 likes, 0 repeats
       
       @Sammy8806 So, you want to argue, that apps should enable cracking algorithms? If it's sarcasm I'm missing some marker.
       
 (DIR) Post #ARmmRyWtKLrCibTl7g by Sammy8806@layer8.space
       2023-01-19T01:38:26Z
       
       0 likes, 0 repeats
       
       @erikbtoots Absolutely not. I'm just saying that there sometimes are restrictions that are not obvious to everybody.Passwords are often used to unlock the actual key, which actually (for example) decrypts something. (Stuff like 16chars max or so are just reaaallllyy bad; please never do that)When you're an online platform you ABSOLUTELY should offer 2-factor-auth or use some more securely managed single sign on, which can provide a benefit for users and the providers