Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://freeradical.zone/users/tek/statuses/110362288369427039">Tek say resist (tek@freeradical.zone)'s status on Sunday, 14-May-2023 11:16:16 JST</a><a href="https://freeradical.zone/@tek" title="tek@freeradical.zone"><img src="https://gnusocial.jp/avatar/4301-48-20230503165012.webp" width="48" height="48" alt="Tek say resist" style="position: absolute; left: 0; top: 0;">Tek say resist</a><div><a href="https://freeradical.zone/@tek/110362278283333805" rel="in-reply-to">in reply to</a></div></section><article><p>If you come anywhere near authentication services for a living, you must read NIST 800-63B (<a href="https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-63b.pdf" rel="nofollow noreferrer">https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-63b.pdf</a>). It’s very clear, readable, and useful. And if you require wildly complex passwords, or disable pasting them into web forms, or make users rotate them, you’re violating government standards and best practices. Stop that!</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/1459785#notice-2973235">In conversation</a><time datetime="2023-05-14T11:16:16+09:00" title="Sunday, 14-May-2023 11:16:16 JST">Sunday, 14-May-2023 11:16:16 JST</time> <span>from <span><a href="https://freeradical.zone/@tek/110362288369427039" rel="external" title="Sent from freeradical.zone via ActivityPub">freeradical.zone</a></span></span><a href="https://freeradical.zone/@tek/110362288369427039">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-63b.pdf">https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-63b.pdf</a></h5><div></div></header><div></div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Tek say resist (tek@freeradical.zone)'s status on Sunday, 14-May-2023 11:16:16 JST Tek say resist
in reply to
If you come anywhere near authentication services for a living, you must read NIST 800-63B (https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-63b.pdf). It’s very clear, readable, and useful. And if you require wildly complex passwords, or disable pasting them into web forms, or make users rotate them, you’re violating government standards and best practices. Stop that!
In conversationSunday, 14-May-2023 11:16:16 JST from freeradical.zonepermalink
Attachments
1. No result found on File_thumbnail lookup.
  https://nvlpubs.nist.gov/nistpubs/specialpublications/nist.sp.800-63b.pdf

Public

Embed Notice

HTML Code

Corresponding Notice