• Midnight Wolf@lemmy.world
    link
    fedilink
    English
    arrow-up
    11
    ·
    edit-2
    17 days ago

    USAA is guilty of this shit. Let’s you set a huge password. Truncates it. Doesn’t tell you about it. Error when logging in.

    I want to beat the motherfucker behind this strategy.

    E: Kagi too. I bitched out the support and I got a ‘meh, it should have told you’ response. Fix your shit.

    • MicrowavedTea@infosec.pub
      link
      fedilink
      arrow-up
      6
      ·
      17 days ago

      Not sure what is worse, not telling you and giving an error or not telling you and letting you log in (ie truncating the password both times, letting you think your password is longer than it is)