Hacker News new | comments | show | ask | jobs | submit login

What does this have to do with anything? Forcing users to change their passwords every 15 days to a 15 to 30 character password composed of no dictionary words, mixed upper- and lower-case letters, special symbols (except '^' and '$') and at least four numbers that do not appear in their SSN or birth date is a security measure too. Doesn't mean it's sensible or even reliable security.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact