We’ve all been there.

  • OdinsonThor@lemmy.ca
    link
    fedilink
    English
    arrow-up
    4
    ·
    1 year ago

    All of those things can be verified before storing the password in any way, encrypted or not, and checking them would be a requisite before storing it.

    While it’s true that they don’t have a significant impact on the hash generated, they make it significantly more difficult for anyone to guess your password. It’s much easier to guess password321 than something like Or^9L%u&QQ12XxI@. And that has nothing to do with how the password is ultimately stored.