(Sent earlier to dev-identity list, but relevant to you all as well.) "91% of all user passwords sampled all appear on the list of just the top 1,000 passwords."
https://xato.net/passwords/more-top-worst-passwords/#.UqWy83i9LCS If true, it's hard to argue that passwords alone are strong enough to secure accounts. Create a blacklist? I would love to help people concoct their own password scheme and improve password management at the same time. Ryan Feeley Product Designer, Identity Mozilla UX IRC: rfeeley
_______________________________________________ Sync-dev mailing list [email protected] https://mail.mozilla.org/listinfo/sync-dev
