Reply to post: Re: Even the big companies fail at this

'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows

Stumpy

Re: Even the big companies fail at this

My guess on this is that server-side the password is read into a statically allocated 16 character array buffer before being dealt with rather than being read into some dynamically allocated string buffer. And it's much easier to stick a little bit of validation on the front-end rather than recode the server-side code that actually does the password encryption.

Still no excuse for those sorts of half-measures though

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019