sylvank
commented
7 months ago I have been angrily telling various websites that their password requirements are ridiculous and not consistent with the latest NIST recommendations because they demand the capitals, numbers, and special characters. Unfortunately, it's pretty entrenched.
So I hesitate to recommend UseAPassphrase to people because the generated passphrases won't work on most websites.
Generating a passphrase that's also consistent with the majority of sites' password requirements would make the site more useful and effective.
A default something like: Word1-Word2-Word3 (random words & numbers of course) should work for most users. Perhaps a little research would be needed to see if hyphens alone would meet most sites' requirements.
Edit: I note these two sites can produce exactly what I describe: https://bitwarden.com/password-generator/ https://www.correcthorsebatterystaple.net/
Hello,
Thanks for the excellent tool.
Some websites require one or more of the above conditions. It'd be great to have the option to replace a couple of spaces with such special numbers, e.g.:
Degrading !geologist_chase dingbat3I'm aware it affects memorability, but It is a common requirement to have these special characters in the password.
I'll happily add this feature myself if you will review the PR.