10Tem
Password rules: Should I disallow "leetspeak" dictionary passwords like XKCD’s Tr0ub4dor&3
TLDR: We already require two-factor authentication for some users. I’m hashing, salting, and doing things to encourage long passphrases. I’m not interested in the merits of password complexity rules in general. Some of this is required by …