He should have said a short length limit, it’s still recommended to have a length limit of some sort (I think 64 is the official recommendation) to prevent people from doing shit like pasting the entire Shrek script as a password (because you KNOW some people will lol)
Lemmy-UI has a password limit of 60 characters. Does that mean they are storing your password in plain text?
He should have said a short length limit, it’s still recommended to have a length limit of some sort (I think 64 is the official recommendation) to prevent people from doing shit like pasting the entire Shrek script as a password (because you KNOW some people will lol)
No, that means they don’t like DoS attacks.
Does anyone like being on a receiving end of those?
I think they could also check that length with Javascript in the browser. Dont know, you should ask the devs.
You are right and that’s exactly what happens in your 16 char example.