[OpenID] OpenID Assertion Quality Extension - Draft
Daniel E. Renfer
Duck at Kronkltd.net
Fri Dec 8 08:22:29 UTC 2006
This information is usually listed on the registartion page anyway.
"8-16 characters. Letters and numbers only. No spaces. Case
sensitive." - password change screen from Comcast.net
"Must be at least 6 characters long." - registration page from digg.com
"Choose a secure password, which:
is at least six characters long.
contains at least four different characters.
contains at least one number or symbol.
cannot be based upon your username, display name or email address." -
registration page from livejournal.com
Generally, someone could find this information by taking only a few
seconds of searching. (or having their own valid account in the
Comcast case)
Daniel E. Renfer
http://kronkltd.net/
On 12/7/06, Granqvist, Hans <hgranqvist at verisign.com> wrote:
> > It might be useful to some RP's to know of any complexity
> > schemes put on users' passwords.
> > ...
> > What do you think?
> >
>
> I think this is excellent information . . . for someone
> trying to figure out your password!
>
> -Hans
>
More information about the specs
mailing list