Menu
When going through registration, a lot of sites will disallow the use of symbols in passwords. This drives me up the wall from a usability perspective since I include multiple symbols in all my passwords, and as a programmer that deals with web authentication from time to time, I can't figure out why it wouldn't be allowed. Am I missing something? Are they worried about SQL injection? Don't want to deal with escaping characters? Or is there something with non-Latin-alphabet characters that can mess things up?
Similar question, about sites that restrict length here.
811
Banks restrict the special characters, probably because they are storing the passwords in plain text, which they shouldn't be doing, and they are afraid some special characters will leak into their business logic and hack it.
An alphanumeric password contains numbers, letters, and special characters (like an ampersand or hashtag). In theory, alphanumeric passwords are harder to crack than those containing just letters. But they can also be harder to both create and remember.
The Restricted Characters for Passwords (QPWDLMTCHR) system value limits the use of certain characters in a password. This value provides additional security by preventing users from using specific characters, such as vowels, in a password.
Special characters, including the following are not acceptable: (){}[]|`¬¦! "£$%^&*"<>:;#~_-+=,@. If you do use a disallowed character and the system does not recognize your mistake you will not be allowed to use the password or username to log into your account later.
182
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
