How major web companies (and banks) handle passwords quite wrong

There’s a very interesting “movement” in password handling going on for a long time, the basic idea is to encourage people NOT to use passwords that consists of letters, numbers and special characters and use VERY LONG text only.

This may sound weird, as this is exactly the opposite of what every internet-using person has been teached all over the years, even by the biggest websites on the planet, even by banks and high-risk applications.

But it’s wrong.

There is this excellent “comic” describing quite good why special chars in a password are not really good:

Have a look on the excellent talk on security.stackexchange.com about that:
http://security.stackexchange.com/questions/6095/xkcd-936-short-complex-password-or-long-dictionary-passphrase

The really weird thing is, that even the biggest player, even banks, paypal etc. still rely on the old-school password judging. I’ve found an excellent article that shows disturbing results of the companies password strenght meter, just have a look (click for larger picture):

Find the full article here:
https://tech.dropbox.com/2012/04/zxcvbn-realistic-password-strength-estimation/

Remember, these are some of the biggest internet-players, companies whose user accounts are extremely valueable for hackers!

Awesome.

Note: This article will get updates.

How major web companies (and banks) handle passwords quite wrong

How Snapchat wants to earn money (by establishing vertical videos)

How to install PHP 7.0 on Ubuntu 14.04 LTS

Best introduction to unix command line / bash ever (by André Augusto Costa Santos)

Microsoft announces “holographic” 3D interfaces (promo video)

EOL lists of Ubuntu, Debian and CentOS for your server plannings

(Links) How to fix an extremely slow Symfony inside a Vagrant box

Harper Reed – The magic and mystery of Big Data (30min video from Webstock’15)

O’Reilly’s Programming JavaScript Applications by Eric Elliott for free (Early Access release)

Creator of Slim framework and “PHP – The right way” writes book: “Modern PHP”, available 2015

“Belt” adds very clever everyday functions to PHP, comes with JavaScript naming styles and eventually solves the needle/haystack problem

Which PHP-framework to learn in 2014 ? PHALCON, by far the fastest ever!

Redesigning Windows 8 – fantastic and clever drafts by Jay Machalani

Preview-release of (my) “php-mvc” project (a simple php mvc barebone)

Frontend Ops Conf 2014 – Sarah Goff-Dupont: Git, Continuous Integration and Making It Pretty (31min video)

(Links) How to fix an extremely slow Symfony inside a Vagrant box

Nice gifts for devs: Nerdy playing-cards decks

How to hack time (KUNG FURY promo campaign)

Useful basic linux stuff: Show kernel version, distribution name and distribution version on Ubuntu systems

Bézier Curves – Under the Hood (4min video)

Creator of Slim framework and “PHP – The right way” writes book: “Modern PHP”, available 2015

Extremely easy SASS in Laravel (with pure PHP)

This is an experimental advertisement

[german video] Modernizing and minimalizing frontend markup code at AutoScout24

GitHub rolls out .PSD diff and viewing