Explore >> Select a destination
|
You are here 
|
dusted.codes | ||
| | | | |
blog.josefsson.org
|
|
| | | | | ||
| | | | |
pboyd.io
|
|
| | | | | Here's a fun list to look through: Dumb Password Rules. Most of the rules seem arbitrary, like only allowing digits, but some hint at deeper problems. For instance, preventing single-quotes. They aren't inserting passwords into a database without a SQL placeholder, right? Nearly every site on that list has a needlessly short maximum password size. If they're storing passwords correctly, there's no need for this. This post will go through a few bad ways to store a password and you can see what I mean.... | |
| | | | |
8yd.no
|
|
| | | | | Passwords should be set, not sent - and other things I thought about when someone talked about password-emailing as a natural part of the user registration. I'm no security expert, but that's a big n... | |
| | | | |
textslashplain.com
|
|
| | | All major browsers have a built-in password manager. So we should use them, right? I Do I use my browser's password manager because it's convenient: with sync, I get all of my passwords on all of my devices. This convenience means that I can use a different password for every website, improving my security. This... | ||
