Context is that I had to register for a lot of accounts recently and some of the rules really make no sense.
Not name-and-shaming, but the best one I’ve seen recently is I might have accidentally performed an XSS attack on a career portal using a 40-digit randomly generated password…
The most funny one was a professional and rather costly password checking tool.
Besides the usual other rules, it had a rule that the new pw must not be similar to the old one. For similarity, this thing checked each character in it’s place.
So you could have the old one:
“MyAssMy$1” and the new one:
“$1MyAssMy” and it was not similar at all :)
thats a fun example and and all, but what situation does “MyAssMy$1” arise from? 😳
From the situation where you suddenly need to make up an example for a lemmy post.