6x Space does not show up as pwned password
https://haveibeenpwned.com/Passwords
If you type in spaces (any number, I used 6 here), they are not detected or evaluated as pwned passwords. I thought that was curious.
Seems this could possibly mislead some to think they are being clever by entering just spaces as a password.
Does anyone know the exact reason for this? Is it simply impossible to query this as a record in their DB? Would a password field usually not accept spaces?
2 comments
[ 2.6 ms ] story [ 17.9 ms ] thread