What? No punctuation marks? Special characters like !@#$%^&*()_+?
this post was submitted on 18 Jul 2025
622 points (97.1% liked)
memes
16446 readers
2771 users here now
Community rules
1. Be civil
No trolling, bigotry or other insulting / annoying behaviour
2. No politics
This is non-politics community. For political memes please go to !politicalmemes@lemmy.world
3. No recent reposts
Check for reposts when posting a meme, you can only repost after 1 month
4. No bots
No bots without the express approval of the mods or the admins
5. No Spam/Ads
No advertisements or spam. This is an instance rule and the only way to live.
A collection of some classic Lemmy memes for your enjoyment
Sister communities
- !tenforward@lemmy.world : Star Trek memes, chat and shitposts
- !lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
- !linuxmemes@lemmy.world : Linux themed memes
- !comicstrips@lemmy.world : for those who love comic stories.
founded 2 years ago
MODERATORS
I got a "we've had customers accounts breached, please update your password" email the other day.
They specifically called out you can't use # in your password, and it's been bugging me why that is. What part if their system let's in other special characters but # is off limits?
Now that I’m thinking about this it’s bugging me too. If they are passing it to shell scripts maybe it’s interpreted as a comment? Some databases like Oracle use # to separate schema prefix from schema user and table name in a query? But none of those would really make sense here 🤷
EDIT they are storing it in plain text, with other values using # as a delimiter? lol
load more comments
(4 replies)
And in six weeks... It's time to change your password! No repeats.
Just add one to the number each time.
I'm on "[passwordiveusedforyears]22!" at work.
For otherwebsites I'm on things like "[passwordIveusedforyears][websitename]!"
Proper 2FA is secure enough for most people to keep using the same password so long as it hasn't been compromised. And a few things, like work passwords, email passwords, and bank passwords should be unique to thaspecific account.
Really, the biggest security hole is requiring logins for fucking everything. That's why there's a million password leaks. Why does a news website need me to sign in? Why do I need an account and password to order a pizza that I'm gonna pay for in-person?
load more comments
(1 replies)
It's not so bad once you develop a system.
And as a bonus, when a few of them leak, hackers will have a little puzzle to solve. Hackers love puzzles.
We upped our passwords to sixteen chars last fall. Also, it’s UPPER lower digit and special-char. And we only require changing every twelve months when it used to be much more.
Here's what you do: Generate long random string, for example: P5edM5Ce0SGE0rOr9k&#T*wG@d$og^qyBTk2@%dmO@2akbm!b^5^p!bH8w7Ei7gPSIR^1Er&hab3ae@0odk3h76Ka48kYtXrsburM$7rf^vPRwXz1s5guO&$PZz3@w
Memorize it.
For each site just choose a number and select 16 characters starting at this number.
Remember which page uses what number. E.g. google = 32 -> &#T*wG@d$og^qyBTk2
Done. You don't have to remember any more passwords for the rest of your life.
load more comments
(9 replies)