This repository has been archived by the owner on Feb 9, 2020. It is now read-only.
Password strength shouldn't rely on rules other than entropy and a dictionary of common passwords #26
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Supporting rules such as "2 special characters" encourages bad practice and is pretty much security theater. Don't encourage it!
The text was updated successfully, but these errors were encountered: