On Tue, Apr 15, 2014 at 11:59 AM, Liangent <liangent@gmail.com> wrote:

Purely in reply to Pau's comic:

Unfortunately I saw too many password fields with a limit of maximum length. Many are 16 chars and some are even 8 chars. I don't really know their point: passwords are going to be hashed. Why does their original length matter much?

Sadly from what I can tell a large portion of them don't actually hash it....or use it in it's raw form somewhere else in their system.

James Alexander

Legal and Community Advocacy

Wikimedia Foundation

(415) 839-6885 x6716 @jamesofur