• uvok@pawb.social
    1·
    9 months ago

    well acshully

    I can imagine this could happen if sites change the implementation, e.g. their password hashing algorithm, in a way that require a password reset. (e.g. the site still used md5 or sha1 for password hashing). They won’t allow login with the broken hash. But they still check if the new password is the old one, since the old one could be compromised.

  • Garocho_CA@lemmy.ca
    0·
    9 months ago

    Same feeling when you go to reset the password and find out this site has a weird rule like “cannot use full words within password”, and then remembering the weird password you used for the site. I wish password requirements could be seen next to the login field sometimes.

      • Jaigoda@lemmy.worldEnglish
        1·
        9 months ago

        Unless the website has changed it at some point, the password creation rules will be easily accessible just by going to the account creation page. Having it copied to the login page is not going to help people guess your password in any meaningful way.