“More than half of the websites in the study accepted passwords with six characters or less, with 75% failing to require the recommended eight-character minimum. Around 12% of had no length requirements, and 30% did not support spaces or special characters.”

  • ultratiem@lemmy.ca
    link
    fedilink
    arrow-up
    4
    ·
    1 year ago

    I was under the impression that even just letters (no case) would take a lifetimes to brute force if you exceeded 15 characters. And that drops to just 11 if you mix cases, numbers and special characters.