njoseph, How to design the most user-hostile password field, inspired by my router.
- Do not allow pasting into the password field
- Whenever a user presses backspace once clear the password field
- Have your password requirements such that the password is not memorable. Goes without saying - don't allow passphrases.
Now your user will set a weak but memorable, highly reused password. From your user's perspective, your system is about as secure as some other system whose #passwords got leaked.
Add comment