Hacker News new | comments | show | ask | jobs | submit login

Two things that stood out to me:

Given that the most common 50 passwords are known, why not reject them outright? Simply state to the user: your password is too easy to guess.

Passwords should always allow spaces in order to allow people to use easier to remember passwords, a la xkcd.


Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact