koldfront

eBay password reset #security

๐Ÿ•š๏ธŽ - 2014-05-25

Recently eBay was hacked, and their user database containing encrypted passwords was compromised.

As is standard procedure, they are asking all customers to change their password.

Usually this is also the time where a company overhauls how passwords are stored, and the policies for the passwords.

As I went through the reset process, I was quite surprised to get this message after entering my new, long, random password:

Your password cannot be longer than 20 characters

This restriction makes no sense.

Add comment

To avoid spam many websites make you fill out a CAPTCHA, or log in via an account at a corporation such as Twitter, Facebook, Google or even Microsoft GitHub.

I have chosen to use a more old school method of spam prevention.

To post a comment here, you need to:

ยน Such as Thunderbird, Pan, slrn, tin or Gnus (part of Emacs).

Or, you can fill in this form:

+=