Sign in
Polyphone Forum

Show exactly what is considered a "strong" password

Category: Feature requests
  • MC 2 0
    Message from Miles Ciccarello on
    Hi, I just created my account about a minute ago, mostly to report two bugs I found an hour ago after installing Polyphone an hour and a half ago (which took a god damn week, if someone makes it easier to install this on Chromebook that would be wonderful). Anyway, I spent half an hour trying to get a version of my familiar password that wasn't "weak". I ended up trying the suggested password from Google manager and hoping that there would be some way to change my password. (If there isn't, I hope someone makes that possible.) So it would be magnificent if it actually showed what requirements there were. Even better would be to remove the asinine password requirements altogether. Whatever the requirements are, they likely barely affect any computer guesser. And who would even want to hack into a Polyphone account? What is even the point of the password itself? The crummy password barrier is abysmal and someone needs to make a change.

    Edit: sorry, my mood drops significantly whenever this kind of thing happens, where I spend a while configuring something just to have it barely work. They're probably just personal glitches, and I got what I needed from somewhere else.
  • 391 17
    Message from bottrop on
    i agree 200% with you about the password policy. not just for the Polyphone site, but for 99.9% sites on the web!
    regards bottrop
  • 432 1
    Message from Davy on
    Hello,
    I'm sorry to see that the password rules caused so much frustration during your registration process. Unfortunately, I won't change the current system, but I'd still like to provide some context about why these rules exist:
    • Every account created becomes an entry point into a system with additional permissions and capabilities.
    • Even if a compromised account would have limited direct consequences for its owner, abused accounts can still be used in ways that negatively affect the server or other users.
    • The password strength evaluation is not based on simplistic rules such as "one uppercase letter and one special character". It relies on a well-established strength estimation algorithm designed to detect weak or easily guessable passwords more accurately.
    Regarding Chromebook installation: Polyphone is primarily developed for Windows, Linux, and macOS, so Chromebook support is unfortunately not very straightforward at the moment. Using the AppImage might be the solution (with Crostini?), I'd like to have your feedback.
  • MC 2 0
    Message from Miles Ciccarello on
    Huh. Ok, thanks for telling me this.
    I am using Linux (crostini) to run this.
  • 1 0
    Message from hdb2 on
    Hey Miles - I work with a lot of people that feel the same way you do.  My recommendation is to find a good password manager (Bitwarden comes to mind) and let it generate and save your passwords for you.  Think of it this way:  You wouldn't try to change a tire without the proper tools, right?  Just think of a password manager as a tool that makes your life easier.
  • 391 17
    Message from bottrop on
    think a few minutes about the words Predictability and Rithm (like in algoRithm)
    think about a Tool to generate passwords. hackers and burglars love to work with Tools

Sign in or register to take part in discussions.

Polyphone needs you!

Polyphone is free but there are costs associated with its website and development. A small donation will help a lot.

Donate
Learn the basics Try a tutorial
Scroll to
top