num...@deathwyrm.com wrote: > Mine does the same thing. Minimum 6 characters, maximum 8. Huh? > The only reason I can think of for this is frightening... > They DON'T hash our passwords, rather, store them plaintext/obscured. > And long passwords eat DB space. > Scary concept for a bank.
Also what's scary is being thate concerned about bytes. Worst case scenario: 2,000,000 customers with 20 character passwords = 40 MB!! Think of how many extra servers they'll have to buy to store that! (I know there's all kinds of thing like database optimisation CHAR vs VARCHARS, but still) Rory
signature.asc
Description: OpenPGP digital signature