A website complained at me for trying to make a password too long. Their limit is 40 characters. Oh.
@benhamill Whenever I see a length limit on a password field this tells me one thing "we store your password, not its hash".
@benhamill @deshipu sometimes it's just an inexperienced dev.
@benhamill @evilchili Ok, maybe 5% of the time it's the evil haxxors setting up a honeypot.