I think what happens is that your password is expired but rather than telling you it says it is incorrect. This way it doesn’t leak what the current but expired password is.
Same reason why you shoukd not validate username independently from password.
New password cannot be the same as new password
the glory of password managers should shine upon you
Me: Generates new password.
Website: PASSWORD TOO STRONK! TOO LONG! NO USE THESE CHARACTERS!
Me: You pussy. This site is gonna be so hacked…
Shitty way to force people to change their password. Only thing worse than this is using your email login and getting an error, requesting a new password and getting an error that the account does not exist, then trying to make a new account and being told that the account is already in use.
as good a place as any to drop this off https://neal.fun/password-game/
Password must contain at least one upper case number.
ONE
Haha, well done! And now I feel dumb again …
I mean, We could also do
ONEONEONEormypassone upper case numberandmoreI guess?
Steam beams
Mildly infuriating typo, you probably meant
stealsteel beams.Steam buns?
Steam beans.
Steamed hams
At this time of year, at this time of day, in this part of the country, localized entirely within your kitchen?
Yes.
Off topic: Are his nostrils that vertically different? Did I never notice this during the airing of the show? It looks like his nose is having a stroke in the second image.
most faces are not symmetrical and would look weird if they were. I’d say some of the most beautiful people have asymmetrical faces and symmetry as a standard of beauty is a lie. we just don’t study facial features separately and rather take in the face as a whole.
in other words, yes, his nostrils are at different height, but it’s not that noticeable in motion.
Your new password must have a symbol, a number, uppercase letter, lowercase letter, the middle initial of your name, the third number of your birthdate, your blood type (no dashes), the last character of your license plate and the middle number of your social security.
Oh AND it must be 16 characters long because go fuck yourself.
As of 2023, a 16 character password with just lower case letters could be cracked in about 713 years and the average employee stays with a company for about 3.9 years. I really think we are making people work to hard to make good enough passwords and that is how we get people making shitty passwords. And then we ask them to repeat this process every three months, and because getting a password reset is a pain in the ass they right “FuckTh15Pl@ce” on a sticky note under there keyboard (I found that one under a VP’s keyboard).
If we were doing passwords right it would be 12 characters, three character types, last until you leave the company or there is an incident. Also, by not requiring people to change the password every so often it one less thing for the IT Auditor to crab about.
NIST’s official password guidelines state you should not have password expiry unless there is evidence of a compromise
And no one listens to that.
The majority of accounts I have don’t have an expiry
I wouldn’t trust personal data with anything that does - they certainly don’t have any security professionals on staff
Every job I’ve had in the past 10 years makes us reset passwords periodically
10 years ago, that was believed to be best practice.
If they’re still doing it in the last 2-3 years, they don’t have anyone keeping up with modern security standards
At least it’s not your data
