The new forums will be named Coin Return (based on the most recent vote)! You can check on the status and timeline of the transition to the new forums here.
The Guiding Principles and New Rules document is now in effect.
The password set form in the user panel has a maximum character limit of 50, but on the login form there is no such limit. This means that if somebody sets a password longer than 50 characters, they won't be able to log in. The nicest way to fix this would be to remove or increase the limit on the set form, but limiting the login form would work just as well if that would be easier.
I get the problem. Let's assume the password is four characters max. You type
penis
but all you get is ****. When the password typing box is shorter than the max (which I am sure it will be), you won't be aware that the letters you are typing are not going in, it all looks the same. So the password is now "peni", but you don't know that.
Now when you go to the login form, you type "penis" as the password, but it's not going to work, and the user is left wondering why.
The biggest issue is why someone would be insane enough to have a 50+ character password.
Lewisham on
0
RamiusJoined: July 19, 2000Administrator, ClubPAadmin
edited December 2007
ah, I get it now.
Yeah, the law of diminishing returns kicks in somewhere around 15-chars for the password. For each character past about 25 chars, you are getting something like 0.0000000000001% more secure, so by the time you hit 50 chars you are 0.000000000005% more secure than the guy with a reasonable password.
I like using short sentences out of books, (or quotes, song lyrics, whatever) for passwords, because they're easier to remember. I could use "x93*3/?2kcsd94", but it's just so much easier to use something like "Be careful about reading health books. You may die of a misprint." (65 characters) or "I have never taken any exercise except sleeping and resting." (60). I sign in infrequently enough that the added security of the first isn't as important as the ease of memorization for the sentences.
I like using short sentences out of books, (or quotes, song lyrics, whatever) for passwords, because they're easier to remember. I could use "x93*3/?2kcsd94", but it's just so much easier to use something like "Be careful about reading health books. You may die of a misprint." (65 characters) or "I have never taken any exercise except sleeping and resting." (60). I sign in infrequently enough that the added security of the first isn't as important as the ease of memorization for the sentences.
Dude, this isn't your fucking bank account. It's a fucking account on a fucking video game comic forum.
You could have the most secure password in the world and it may not make a difference. Remember that time when a random forumer ended up logging in as Whippy?
But yeah, your forum account isn't really something you need to be too paranoid about.
Dude, this isn't your fucking bank account. It's a fucking account on a fucking video game comic forum.
You could have the most secure password in the world and it may not make a difference. Remember that time when a random forumer ended up logging in as Whippy?
But yeah, your forum account isn't really something you need to be too paranoid about.
Dude, this isn't your fucking bank account. It's a fucking account on a fucking video game comic forum.
You could have the most secure password in the world and it may not make a difference. Remember that time when a random forumer ended up logging in as Whippy?
But yeah, your forum account isn't really something you need to be too paranoid about.
Posts
More importantly, why would you need a 50+ character password for a forum?
penis
but all you get is ****. When the password typing box is shorter than the max (which I am sure it will be), you won't be aware that the letters you are typing are not going in, it all looks the same. So the password is now "peni", but you don't know that.
Now when you go to the login form, you type "penis" as the password, but it's not going to work, and the user is left wondering why.
The biggest issue is why someone would be insane enough to have a 50+ character password.
Yeah, the law of diminishing returns kicks in somewhere around 15-chars for the password. For each character past about 25 chars, you are getting something like 0.0000000000001% more secure, so by the time you hit 50 chars you are 0.000000000005% more secure than the guy with a reasonable password.
EDIT: see also Passwords vs. Pass Phrases and The Great Debate: Part 2.
Of course, quotes are also personal and therefore guessable, but vastly closer to random.
Nintendo Network ID: AzraelRose
DropBox invite link - get 500MB extra free.
No, you're right, my bank won't let me use anything nearly as guessable as actual English words as a password.:P
Nintendo Network ID: AzraelRose
DropBox invite link - get 500MB extra free.
we also talk about other random shit and clown upon each other
You could have the most secure password in the world and it may not make a difference. Remember that time when a random forumer ended up logging in as Whippy?
But yeah, your forum account isn't really something you need to be too paranoid about.
Steam / Bus Blog / Goozex Referral
You could have the most secure password in the world and it may not make a difference. Remember that time when a random forumer ended up logging in as Whippy?
But yeah, your forum account isn't really something you need to be too paranoid about.
Steam / Bus Blog / Goozex Referral
You could have the most secure password in the world and it may not make a difference. Remember that time when a random forumer ended up logging in as Whippy?
But yeah, your forum account isn't really something you need to be too paranoid about.
Steam / Bus Blog / Goozex Referral