Jump to content

"Rude password - login denied": the AT&T April Fool that wasn't


Recommended Posts


"Rude password - login denied": the AT&T April Fool that wasn't

by Paul Ducklin on April 1, 2013


Earlier today, fellow Naked Security writer Graham Cluley pointed me at a fantastic April Fool's story.

AT&T, the tall tale told, had introduced a policy that prohibited passwords that "contain obscene language."

There was even a handy screenshot to add some vernal veracity (or autumnal authenticity in the Southern Hemisphere):


"Very droll," I thought.

After all, it surely wasn't true, since:

  • How would they tell? (Computers aren't yet that smart at understanding the nuances of human language.)
  • Why would they care? (Passwords aren't for other people to know.)
  • Who would ever see it? (Passwords aren't stored in plaintext. They're salted and hashed.)

In short, unless a human, fluent in dozens of languages, were to review your choice, there wouldn't be much hope of reliably and usefully detecting a password couched in obscene terms. (More...)

Read the complete story at: http://nakedsecurity.sophos.com/2013/04/01/rude-password-login-denied-the-att-april-fool-that-wasnt/


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.