**✨Ben Hamill✨** @benhamill · Apr 18, 2017, 13:59

**✨Ben Hamill✨** @benhamill · Apr 18, 2017, 13:59

✨Ben Hamill✨ @benhamill

✨Ben Hamill✨ is a user on octodon.social. You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.

A website complained at me for trying to make a password too long. Their limit is 40 characters. Oh.

**ꝺꜫꞅh̵Ɪꝕꞟ** @deshipu@mastodon.technology · Apr 18, 2017, 14:08

**ꝺꜫꞅh̵Ɪꝕꞟ** @deshipu@mastodon.technology · Apr 18, 2017, 14:08

@benhamill Whenever I see a length limit on a password field this tells me one thing "we store your password, not its hash".

**César Rodas** @cesar@social.com.py · Apr 18, 2017, 14:26

**César Rodas** @cesar@social.com.py · Apr 18, 2017, 14:26

@deshipu @benhamill Well... Mastodon limits passwords to 72 letters :-(

**✨Ben Hamill✨** @benhamill · 2017-04-18T14:44:01Z

✨Ben Hamill✨ @benhamill

@cesar @deshipu See https://crypto.stackexchange.com/questions/24993/is-there-a-way-to-use-bcrypt-with-passwords-longer-than-72-bytes-securely

Apr 18, 2017, 14:44 · Web · 1 · 1

**César Rodas** @cesar@social.com.py · Apr 18, 2017, 23:06

**César Rodas** @cesar@social.com.py · Apr 18, 2017, 23:06

@benhamill @deshipu that's very cool. I didn't know that.

**✨Ben Hamill✨** @benhamill · Apr 19, 2017, 01:10

**✨Ben Hamill✨** @benhamill · Apr 19, 2017, 01:10

@cesar @deshipu Yeah. TIL that as well. Nice people on Mastodom are nice.