https://bugzilla.wikimedia.org/show_bug.cgi?id=25925
--- Comment #33 from MZMcBride <b...@mzmcbride.com> --- (In reply to comment #30) > And MZMcBride... your talking about user convenience. But > convenience<->security is always a matter of the right balance. And frankly. > The difference in convenience between a user being forced to type 'a' and a > user being forced to type 'mypass' or 'password' is so small compared to the > security difference (potentially seconds vs. days vs. years) that the level > of convenience offered by permitting 'a' as a password is unacceptable. The security difference is almost certainly negligible between a password of "a" and a password of "mypass". It would only make a difference if a theoretical hacker used a very linear process to crack passwords (starting with one character, then two, then three), but in reality, nobody would ever crack a password like this. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Wikibugs-l mailing list Wikibugs-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
