top | item 37182776

(no title)

I wondered once about this, but it kind of make sense from the point of view of usability.

Unlike any webservice, you usually have very few attempts to make a successful login before getting locked out, so even if it's four digits, the odds of a successful brute force attack are very low

discuss

plorntus|2 years ago

I suppose so, I just find it funny really that my bank has less password requirements than most (if not all) online services I use