Password max length: 12 characters
Additional requirements: exactly 1 special character and exactly 2 numbers.

Max password lengths should be illegal. I hear they’re mostly due to outdated backend Linux systems. Those should be illegal for most organizations too (like banks). One bank I use had a NINE character pw limit— seriously!?

My bank has a max 8 character requirement on all passwords....

Pffft 12 character limit, that's too safe! My bank has a 6 character limit... and passwords must be only numbers...

@BlasterJoni only 900000 unique passwords then! 😱

@BrokeTheInteger @coagmano @BlasterJoni

$PasswordLength--;

@asgs wouldn't it be 1million?

@sSam yes that was my first thought too, but since they only accept numbers, 000000 *might* be treated as 0 failing the length validation, etc., But yeah, it is definitely more than 900000

@asgs never thought of storing password as a number. Would be so fucked up thought, but I wouldn't be so surprised if there's a bank out there who does that out there to save space or something and truncates the zeros. From my experience though, all shitty systems I've worked with store everything as a string, and I mean everything.