It entirely depends on the service I’m signing up to. Literally today signed up for a Tesco club card as it was going to make buying the stuff at the petrol station £5 cheaper, do I care about this account, nope, so it got a really shitty password that I could remember for the next 30 seconds to log it to the app to get my discount. Same with loads of other forced account creation, will it accept password1 or 123456 then that’s what it gets. On the other hand, Gmail account unique, servers at work, unique, PayPal same unique, and 2 factor where in can.
Also the problem is forced password requirements, must include 1 capital letter, 1 number, 1 special, must be at least 8 characters on a don’t care about account Password1! Is what you get, and that’s why people reuse passwords.
And leaked password databases? No password salt I’m guessing, probably stored in plain text or md5. What’s even the point in creating a complicated password in the first place
It entirely depends on the service I’m signing up to. Literally today signed up for a Tesco club card as it was going to make buying the stuff at the petrol station £5 cheaper, do I care about this account, nope, so it got a really shitty password that I could remember for the next 30 seconds to log it to the app to get my discount. Same with loads of other forced account creation, will it accept password1 or 123456 then that’s what it gets. On the other hand, Gmail account unique, servers at work, unique, PayPal same unique, and 2 factor where in can.
Also the problem is forced password requirements, must include 1 capital letter, 1 number, 1 special, must be at least 8 characters on a don’t care about account Password1! Is what you get, and that’s why people reuse passwords.
And leaked password databases? No password salt I’m guessing, probably stored in plain text or md5. What’s even the point in creating a complicated password in the first place