 |
Post AswmF95CjVw4aGhIIq by [email protected] |
 |
More posts by [email protected] |
|
Post #AswPmRGzpEthbu7SZk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Login pages that hide the password prompt until the username has been entered, … |
|
|
|
Post #AswlZRi75OVGC50qvI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond How about three times? Username, password, 2FA. I hate this, and I m … |
|
|
|
Post #AswlbAwgOAjcmFeUzI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] I think the legit reason to do this is because not al… |
|
|
|
Post #AswlbB5XrDp9DjnZnk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] @[email protected] shout-out to my school's SS… |
|
|
|
Post #AswlcKmDK38rYdJ9fM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond some websites do it but in a way that still lets password manager fil… |
|
|
|
Post #AswldgGCvpS2TgymRM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond @nixCraftI vaguely remember reading something that those forms are mo… |
|
|
|
Post #AswldgUO56nHBfc6Xg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@sirber @rsalmond @nixCraft There's better ways to do that, like forcing de… |
|
|
|
Post #AswldgiZEO8VteFQe0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@sirber @rsalmond @nixCraftFound similar on more credible and less polluting so… |
|
|
|
Post #AswlfdBRLIX9VwgBJA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond They do that because not all accounts will use a password to authenti… |
|
|
|
Post #AswlluBv1N3O04tYYq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond Square does this! I hate it! Also, many sites have adopted it! ARGH! |
|
|
|
Post #AswlrUyRgvSRWmGCEi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond It’s related to SSO isn’t it? Having said that, there are definit… |
|
|
|
Post #AswlvqtU8Rv2fa12zQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond this surprisingly works on microsoft despite only having one visible … |
|
|
|
Post #Aswm0uI6vqb2eawdKS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond @nixCraft often it is like this to check if your account is an SSO-st… |
|
|
|
Post #Aswm5wafoIpVEW1rZw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond if you really want to hide the password till the second round, I'… |
|
|
|
Post #Aswm5whPPGDXZPBF4q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond OMG I realised I'm guilty of this too on one of the websites I… |
|
|
|
Post #AswmB0gC2DonMZ1hmC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond Most of them probably justify it by "intelligently" showing… |
|
|
|
Post #AswmF95CjVw4aGhIIq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond @nixCraft And to add insult to injury, the password field can’t be … |
|
|
|
Post #AswmF9BaLn2Wu3gOFU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@schrotthaufen ugh infuriating! those sites can fuck ALL THE WAY off. |
|
|
|
Post #AswmIwAegKvdhE3SvQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@booklordofthedings oh yeah I've seen that happen! I think it's when th… |
|
|
|
Post #AswmJUXWtnQcI11DIe by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond Ugh @ sites doing “clever” things with their authentication flow … |
|
|
|
Post #AswmNNLpZIGh9WOm1Y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond looking at you too, Synology.. |
|
|
|
Post #AswmVEEZLipJC1kLom by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond They must. There's the same trend with "modern" checkou… |
|
|
|
Post #AswmfGE2ndzKGWHiM4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@badrihippo yay my griping did some good today! 🤜🤛 ♥️ |
|
|
|
Post #AswmozhJ6aghttc6BU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond Related to SSO logins where they want to redirect some users to their… |
|
|
|
Post #AswmoznKkBVaCaQuZs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@andri @rsalmond ah, just posted about this too 🙃️ |
|
|
|
Post #AswmpaWcBJ7U7Rta9g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond why is this becoming a standard? Is it to prevent typing the password… |
|
|
|
Post #AswmsrAIlotGb2183k by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond Yes, pointless and annoying... One of my pet hates too. |
|
|
|
Post #AswmuyZgC41o9ftkIq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond One case where it might make sense (though some website are offenders… |
|
|
|
Post #Aswmuyh7kNz0WlNguG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Sobex oh I hadn't even considered the enumeration factor! |
|
|
|
Post #Aswn3bJY2m0ocZSuw4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] @[email protected] bonus points to the teams mobil… |
|
|
|
Post #Aswn3cJaK7dTiyUSdE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond some password managers out there (bitwarden) support this flow and wo… |
|
|
|
Post #Aswn7t3634uAmZoXDs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond they hate bots even more |
|
|
|
Post #AswnIAv0StWR6Ew5Bo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ainmosni @rsalmond @nixCraft some accounts are linked to an redirection to an … |
|
|
|
Post #AswnMm0sUQYpIysIPQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Usename, captcha (twice), password, 2FA@ronnylam @rsalmond |
|
|
|
Post #AswnMm6u81Nhbfh6no by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@BradRubenstein @rsalmond Ah yes, you win!Which remembers me something I encoun… |
|
|
|
Post #AswnMw1FHunSL17jN2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ronnylam @rsalmond On a positive note: I'm not sure how exactly #PikaPods … |
|
|
|
Post #AswnRxm8Ba5jEUS480 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond I also hate it but, apparently, one reason for it is when a site has … |
|
|
|
Post #AswnTwc7TWASD3iJ6G by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rsalmond @sodiboo That can also be solved by dynamically hiding the password f… |
|
|
|
Post #AswnVHmGH6b68Y64vo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] @[email protected] the way porkbun does this is &q… |
|
|
|
Post #AswnYL3UXngFAic0Wm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@csierrandres @rsalmond It depends on the site, sometimes it works, sopmetimes … |
|
|
|
Post #AswnaVivqmRuq31ziy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@purelyatom @rsalmond Single Sign On, if you enter eg a corporate account it ca… |
|
|
|
Post #AswnbtKnYGFCM6Ow2y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bartvdbraak @rsalmond @nixCraft this also allow to present the preferred MFA … |
|
|
|
Post #AswnhiRKyCyUIvEkrI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@R1Rail @csierrandres yeah I'm a bitwarden user. sometimes it works (eg AWS… |
|
|
|
Post #AsxCBeCThAnAk65lia by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@rsalmond when we developed @thot we had to do this when we introduced 2FA - so… |
