Giving away the password length helps attackers to select the easier target. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		croes 46 days ago \| parent \| context \| favorite \| on: Ubuntu 26.04 Ends 46 Years of Silent sudo Password... Giving away the password length helps attackers to select the easier target.

JoshTriplett 46 days ago [–]

That's an argument for telling people the strength of their password, and warning them when setting a weak password. It's not an argument for decreasing usability in a fashion that will make people less comfortable typing long, complex passwords.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact