← Back to context

Comment by abustamam

8 days ago

Gotcha, I guess my question is, why not both? Is it the requirement of special chars over a min-length password that is in question here? Like the system is like "minimum 8 char password but also three special chars, ancient heiroglyphs, and the blood of your firstborn child" when you can omit the special chars and just have min 16 char password for the same security benefit?

4 comments

abustamam

Reply
GoblinSlayer  8 days ago

Not very meaningful to create yourself a problem to heroically overcome it later. You can already create enough problems unintentionally.

  • abustamam  8 days ago

    I don't quite follow your reasoning. All bugs are (usually) unintentional and created by the programmer.

    • pintxo  7 days ago

      By not using special chars in the first place, you can be sure you will not be able to run into any (unintentional) bugs later.

      And not using special chars is cheap, as by requiring a min-length of 13 instead of 12, you can get an even greater level of security.

      1 reply →