What? No punctuation marks? Special characters like !@#$%^&*()_+?
this post was submitted on 18 Jul 2025
630 points (97.2% liked)
memes
17601 readers
2702 users here now
Community rules
1. Be civil
No trolling, bigotry or other insulting / annoying behaviour
2. No politics
This is non-politics community. For political memes please go to !politicalmemes@lemmy.world
3. No recent reposts
Check for reposts when posting a meme, you can only repost after 1 month
4. No bots
No bots without the express approval of the mods or the admins
5. No Spam/Ads/AI Slop
No advertisements or spam. This is an instance rule and the only way to live. We also consider AI slop to be spam in this community and is subject to removal.
A collection of some classic Lemmy memes for your enjoyment
Sister communities
- !tenforward@lemmy.world : Star Trek memes, chat and shitposts
- !lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
- !linuxmemes@lemmy.world : Linux themed memes
- !comicstrips@lemmy.world : for those who love comic stories.
founded 2 years ago
MODERATORS
I got a "we've had customers accounts breached, please update your password" email the other day.
They specifically called out you can't use # in your password, and it's been bugging me why that is. What part if their system let's in other special characters but # is off limits?
Now that I’m thinking about this it’s bugging me too. If they are passing it to shell scripts maybe it’s interpreted as a comment? Some databases like Oracle use # to separate schema prefix from schema user and table name in a query? But none of those would really make sense here 🤷
EDIT they are storing it in plain text, with other values using # as a delimiter? lol
load more comments
(4 replies)
And in six weeks... It's time to change your password! No repeats.
Just add one to the number each time.
I'm on "[passwordiveusedforyears]22!" at work.
For otherwebsites I'm on things like "[passwordIveusedforyears][websitename]!"
Proper 2FA is secure enough for most people to keep using the same password so long as it hasn't been compromised. And a few things, like work passwords, email passwords, and bank passwords should be unique to thaspecific account.
Really, the biggest security hole is requiring logins for fucking everything. That's why there's a million password leaks. Why does a news website need me to sign in? Why do I need an account and password to order a pizza that I'm gonna pay for in-person?
load more comments
(1 replies)
We upped our passwords to sixteen chars last fall. Also, it’s UPPER lower digit and special-char. And we only require changing every twelve months when it used to be much more.
Here's what you do: Generate long random string, for example: P5edM5Ce0SGE0rOr9k&#T*wG@d$og^qyBTk2@%dmO@2akbm!b^5^p!bH8w7Ei7gPSIR^1Er&hab3ae@0odk3h76Ka48kYtXrsburM$7rf^vPRwXz1s5guO&$PZz3@w
Memorize it.
For each site just choose a number and select 16 characters starting at this number.
Remember which page uses what number. E.g. google = 32 -> &#T*wG@d$og^qyBTk2
Done. You don't have to remember any more passwords for the rest of your life.
load more comments
(9 replies)
It's not so bad once you develop a system.
And as a bonus, when a few of them leak, hackers will have a little puzzle to solve. Hackers love puzzles.